|
|
|
|
|||||||
| Forums | Portal | Register | Forum Rules | FAQ | Contribute | Members List | Arcade | Search | Today's Posts | Mark Forums Read |
| Malware Advisories (RSS) Malware Security Advisories Via RSS |
More UNIX and Linux Forum Topics You Might Find Helpful
|
||||
| Thread | Thread Starter | Forum | Replies | Last Post |
| Troj_mdrop.ah | iBot | Malware Advisories (RSS) | 0 | 03-14-2008 03:30 AM |
| Troj_mdrop.ah | iBot | Malware Advisories (RSS) | 0 | 03-06-2008 01:20 AM |
 |
|
|
Submit Tools | LinkBack | Thread Tools | Display Modes |
|
#1
04-11-2008
|
||||
|
||||
|
Troj_mdrop.ao
This Trojan arrives as attachment to email messages spammed by another malware or a malicious user.
Upon execution, it exploits the Macro Validation Vulnerability in Microsoft Excel wherein a specially crafted document can cause the application to drop and execute an embedded .EXE file. More information about the said vulnerability can be found here. Once it successfully exploits the mentioned vulnerability, it is able to execute a shell code which, in turn, runs the embedded .EXE file on the affected system. The said file is detected by Trend Micro as BKDR_ACCDROP.F. It may be downloaded unknowingly by a user when visiting malicious Web site(s). More... 
|
||||
| Google The UNIX and Linux Forums |
| Forum Sponsor | ||
|
|
Linear Mode
