HTML_DLOADR.CJ - Description and solution

TrendLabs Malware Blog

Glossary

TrendWatch

TrendLabs Twitter

HTML_DLOADR.CJ

Overview

Solution

Technical Details

Malware type: Html

Aliases: Trojan-Downloader.VBS.Psyme.pa (Kaspersky), HTML/Rce.Gen (Avira), Troj/Psyme-IQ (Sophos),

In the wild: Yes

Destructive: No

Language: English

Platform: Windows 98, ME, NT, 2000, XP, Server 2003

Encrypted: No

Overall risk rating:

Reported infections:
Damage potential:		Medium
Distribution potential:		Low

Description:

This html may be downloaded from remote sites by other malware. It may arrive bundled with malware packages as a malware component. It may be downloaded from certain remote sites.

This malicious HTML Script may be downloaded from remote site(s) by the following malware:

HTML_IFRAME.AAK

It may arrive bundled with malware packages as a malware component.

It may be downloaded from the following remote site(s):

http://{BLOCKED}eduizuan.com/14.htm

It connects to a URL to download TROJ_AGENT.ALGQ. It then saves the downloaded file using a certain file name. It then executes the downloaded fle. As a result, routines of the downloaded file are exhibited on the affected system.

For additional information about this threat, see:
Solution
Technical Details

Description created: May. 7, 2008 11:52:57 AM GMT -0800

Search a new malware

Tell us how we did. Take our quick survey.