|
|
|
|
|||||||
| Forums | Portal | Register | Forum Rules | FAQ | Contribute | Members List | Arcade | Search | Today's Posts | Mark Forums Read |
| Malware Advisories (RSS) Malware Security Advisories Via RSS |
More UNIX and Linux Forum Topics You Might Find Helpful
|
||||
| Thread | Thread Starter | Forum | Replies | Last Post |
| Troj_mutant.ew | iBot | Malware Advisories (RSS) | 0 | 07-25-2008 01:20 PM |
| Troj_mutant.al | iBot | Malware Advisories (RSS) | 0 | 05-14-2008 12:30 PM |
 |
|
|
Submit Tools | LinkBack | Thread Tools | Search this Thread | Display Modes |
|
#1
07-31-2008
|
||||
|
||||
|
Troj_mutant.hp
This Trojan may arrive bundled with malware packages as a malware component. It may also arrive as a .DLL file that exports functions used by other malware.
It is usually dropped in Windows system folder and executes every time the system is started via a created autostart registry entry. This .DLL file is injected into the WINLOGON.EXE process running in memory. It has the capability to connect to a certain URL using the HTTP (TCP port 80) protocol to possibly download other files. It also has the capability to drop a temp file, which is detected by Trend Micro as TROJ_PANDEX.EO. However, this Trojan requires other components in order to run properly. More... 
|
||||
| Google The UNIX and Linux Forums |
| Forum Sponsor | ||
|
|
|
| Thread Tools | Search this Thread |
| Display Modes | |
|
|
Linear Mode
