Trojan-Downloader.Win32.Stubby.d

tag:Trojan Downloaders

0 0

This Trojan program will download other malicious programs via the Internet without the user's knowledge or consent.

The Trojan itself is a Windows PE EXE file 26624 bytes in size, packed using ASPack. The unpacked file is approximately 46KB in size.

Once launched, the Trojan registers itself in the system registry, ensuring that the Trojan will be launched each time Windows is rebooted on the victim machine:

[HKLM\Software\Microsoft\Windows\CurrentVersion\Run]
"satmat" = "≶path to Trojan>"

The Trojan will download another Trojan program from the following address:

http://download.abet*********et.com/download/stmtreco/

It saves this program on the victim machine and launches it for execution.

previous:Trojan-Downloader.Win32.Small.tot.tot
previous:Trojan-Downloader.Win32.Swizzor.cc

Virus Source from:

New articles

Trojan.Win32.Oficla.dvThis Trojan downloads files from the Internet and launches them without the user’s knowledge or consent. It is a Windows PE EXE file. It is 35840 byte...Conficker.CIt exploits the vulnerability MS08-067 in the Windows Server Service in order to spread itself. It also spreads through shared and removable drives. It reduces ...Downloader.MDW It reduces the security level of the computer: it notifies the attacker that the computer has been compromised and is ready to be used maliciously; it chan...Trojan.Downloader.WMA.Wimad.ZThis is another copy of the Trojan.Downloader.Wimad.A . It behaves in a similar way and even downloads from the same webpage ( hxxp://missing-codecs.net ) which...Trojan.Downloader.WMA.Wimad.SThis is another copy of the Trojan.Downloader.Wimad.A . It behaves in a similar way and even downloads from the same webpage ( www.fastmp3player.com ) which mea...

Hot Articles

Trojan-Downloader.Win32.Stubby.d

Computer Virus Clounds