Malware type: Trojan

Aliases: No Alias Found

In the wild: Yes

Destructive: No

Language: English

Platform: Windows 98, ME, NT, 2000, XP, Server 2003

Encrypted: No

Description: 

To get a one-glance comprehensive view of the behavior of this malware, refer to the Threat Diagram shown below.

Malware Overview

This Trojan exploits a zero-day vulnerability in certain versions of Adobe Reader Acrobat.

More information on this vulnerability can be found below:

• Security Advisory for Adobe Reader and Acrobat
• CVE-2009-3459

After succesfully exploiting the said vulnerability, it drops a detected by Trend Micro as BKDR_PROTUX.BD. It then replaces the initially executed PDF file with the abovementioned normal PDF file.

To download and apply the specific security patch, please click here.

Trend Micro advises users to download critical patches upon release by vendors.

For additional information about this threat, see:
Solution
Technical Details

Description created: Oct. 8, 2009 6:39:45 PM GMT -0800

Search a new malware

Tell us how we did. Take our quick survey.