検索:
ホーム   »     »   Another Targetted Trojan Attack

Another Targetted Trojan Attack

  • 投稿日:2005年12月5日
  • 脅威カテゴリ:未分類
  • 執筆:ウイルス解析担当者
0

This time, gsbill.exe (the extracted file
that is, although it is being spammed with a random-looking
filename). We’ve received 2 copies so far, although yet again, no
email details (due to the nature of the setup).

FileName: {random}.zip (28128 bytes), extracts to gsbill.exe
(29,696 bytes)
MD5:
  • ZIPped file – 7ad8ee031755fb6f3c4da35584cccf7f
  • Executable – af97407d3fd715dc41861816b184be5d

MIST Detections:
  • TrendMicro : PAK_Generic.001
  • Symantec : Trojan.Danmec
  • Kaspersky : NO_VIRUS
  • McAfee : MultiDropper-PH
  • Sophos : NO_VIRUS
  • Panda : NO_VIRUS


Update (JJ,
04 December 2005 19:43:32)

And from another source comes the actual
email details yes! heeheheh. Check out the advisories page.


Update (Ivan, 04 December 2005 21:16:16)
This will now be detected as
TROJ_DANMEC.E.

No related posts.



  • 個人のお客さま向けオンラインショップ
  • |
  • 法人のお客さま向け直営ストア
  • |
  • 販売パートナー検索
  • Asia Pacific Region (APAC): Australia / New Zealand, 中国, 日本, 대한민국, 台灣
  • Latin America Region (LAR): Brasil, México
  • North America Region (NABU): United States, Canada
  • Europe, Middle East, & Africa Region (EMEA): France, Deutschland / Österreich / Schweiz, Italia, Россия, España, United Kingdom / Ireland
  • 電子公告
  • ご利用条件
  • プライバシーポリシー
  • Copyright © 2021 Trend Micro Incorporated. All rights reserved.