|
Description:
This Trojan may be downloaded from remote site(s) by other malware. It may be dropped by other malware. It may also be downloaded unknowingly by a user when visiting malicious Web site(s).
It drops files. It adds key(s) as part of its installation routine.
It connects to certain URLs to download a copy of the legitimate file GMER.EXE and a file detected by Trend Micro as TROJ_DAMMI.AB.
This Trojan also creates a batch file that terminates the processes related to the G-Buster Browser Defense, a security program used by several Brazilian banks as protection from information theft.
This Trojan disables the security program that is used by the certain financial institutions.
For additional information about this threat, see:
Solution
Technical Details
Description created: Oct. 19, 2009 5:23:21 AM GMT -0800
Search a new malware
Tell us how we did. Take our quick survey.
|
Save & Share
