TROJ_DLOADER.VIN |
|
| BugsAlert Home > TROJ_DLOADER.VIN | |
|
This Trojan may be downloaded from a remote site. It may also be downloaded unknowingly by a user when visiting malicious Web sites. Upon execution, this Trojan drops several component files, some of which are detected by Trend Micro as BKDR_SMALL.EKS. It then executes the dropped files. As a result, malicious routines of the dropped files are exhibited on the affected system. It then registers itself as a system service to ensure its automatic execution at every system startup. It adds a reference to a non-existent file to the Layered Service Provider (LSP) chain by modifying a registry entry. It deletes itself after execution. It connects to URLs to download malicious files detected by Trend Micro as follows:
It saves the downloaded files in the Windows system folder. It then executes the downloaded files. As a result, malicious routines of the downloaded files are exhibited on the affected system. Original Source: http://www.trendmicro.com/vinfo/virusencyclo/default5.asp?VName=TROJ_DLOADER.VIN Learn more about TROJ_DLOADER.VIN |
|
| Tags: troj dloader.vin | |
Related Items |
|
|
Mandriva: Updated apache 2.0.x packages fix multiple
|
|
|
CVE-2008-4447 (h-sphere)
|
|
|
VU#684883: CA Unicenter DSM ITRM Legends ActiveX integer overflow
|
|
|
Debian update for php5
|
|
|
VU Case Manager "default.asp" SQL Injection Vulnerabilities
|
|
|
CVE-2008-2678 (Telephone Directory 2008)
|
|
|
Ten Firefox Extensions to Keep Your Browsing Private and Secure
|
|
