Bugsalert.com
Security News about Viruses, Spyware,
Trojans, Malware, XSS attacks.
Home | Recent | Sitemap

TROJ_VB.AEB
BugsAlert Home > TROJ_VB.AEB
 
 

This Trojan arrives either as a dropped file by other malware or as a file downloaded from the Internet by a user.

Upon execution, it searches for files with the following extensions:

  • AVI
  • JPG
  • MP3
  • MPG

When it finds a match, it drops a copy of itself using the file name of the found file appended with the extension .EXE. For example, if it finds a file PICTURE.JPG, it uses the file name PICTURE.JPG.EXE for its dropped copy.

It also modifies the last section of the dropped file in an attempt to avoid easy detection.

Furthermore, it creates a folder with an attribute set to Hidden using the file name without extension of the executed copy appended with the string 1 as the folder name.




Original Source: http://feeds.trendmicro.com/~r/MalwareTop10/~3/180167465/default5.asp

Learn more about TROJ_VB.AEB
 
Tags: troj vb.aeb

Related Items
      Joomla Component JooBlog 0.1.1 (PostID) SQL Injection Vulnerability

      CVE-2008-1473 (Altiris Deployment Solution)

      Multiple LFI in PowerPHPBoard 1.00b

      Sun Solaris "rpc.metad" Denial of Service

      FrSIRT - SuSE Security Update Fixes Multiple Security Bypass Vulnerabilities

      Is there no MVP to answer this??

      stat() "blocks" is in 512B units, not "blksize" units

 
© 2007-2009 BugsAlert.com Original template by Arcsin Hosted By 1and1


Pixel