Threat Information for "Trojan.DownLoader.9899"
| Summary | Top |
- Name: Trojan.DownLoader.9899
- Aliases:
- Date Discovered: 2007-02-27
- Protection Added: 2007-03-07
| Description | Top |
-- Ease of Removal 1: Consistent file contents 2: File names randomly generated from a hard-coded list -- Privacy Risks/Security Changes 1: Mimics legitimate file names -- Damage/Intrusion/Annoyance 1: Significantly slows down the computer 2: Creates new files 3: Autoruns at startup without an option to be disabled 4: Downloads other threats -- Propagation/Saturation 1: Infects from a link in an email 2: Infects from an email attachment
| Technical Details | Top |
- Added Directory/File:
FilePath: %ROOTDRIVE%*.exe MD5: d41d8cd98f00b204e9800998ecf8427e - Added Directory/File:
FilePath: %ROOTDRIVE%csrreh.exe - Added Directory/File:
FilePath: %ROOTDRIVE%*.exe MD5: 551030f04867dc8bfa69a65ba639984d - Added Directory/File:
FilePath: %ROOTDRIVE%uniq - Added Registry Key:
Key: HKLM\%CURRENTVERSIONREG%\Run
