|
|
|
google unix.com
|
|||||||
| Forums | Register | Forum Rules | Links | Albums | FAQ | Members List | Calendar | Search | Today's Posts | Mark Forums Read |
| Malware Advisories (RSS) Malware Security Advisories Via RSS |
More UNIX and Linux Forum Topics You Might Find Helpful
|
||||
| Thread | Thread Starter | Forum | Replies | Last Post |
| Troj_mdrop.ah | iBot | Malware Advisories (RSS) | 0 | 03-14-2008 06:30 AM |
| Troj_mdrop.ah | iBot | Malware Advisories (RSS) | 0 | 03-06-2008 04:20 AM |
Powered by 
|
|
|
LinkBack | Thread Tools | Search this Thread | Rate Thread | Display Modes |
04-11-2008
|
|||||
|
|||||
|
Troj_mdrop.ao
This Trojan arrives as attachment to email messages spammed by another malware or a malicious user.
Upon execution, it exploits the Macro Validation Vulnerability in Microsoft Excel wherein a specially crafted document can cause the application to drop and execute an embedded .EXE file. More information about the said vulnerability can be found here. Once it successfully exploits the mentioned vulnerability, it is able to execute a shell code which, in turn, runs the embedded .EXE file on the affected system. The said file is detected by Trend Micro as BKDR_ACCDROP.F. It may be downloaded unknowingly by a user when visiting malicious Web site(s). More... |
| Bookmarks |
| Thread Tools | Search this Thread |
| Display Modes | Rate This Thread |
|
|
Threaded Mode
