TrendLabs Malware Blog
Glossary
TrendWatch
TrendLabs Twitter
TROJ_ACDROPPER.K
Overview
Solution

Malware type: Trojan

Aliases: Trojan-Dropper.MSAccess.Jet.i (Kaspersky), BackDoor-CVI.dr (McAfee), Trojan.Acdropper (Symantec), EXP/JetDB.A (Avira),

In the wild: Yes

Destructive: No

Language: English

Platform: Windows 98, ME, NT, 2000, XP, Server 2003

Encrypted: No

Overall risk rating:

Reported infections:

Damage potential:

 Medium

Distribution potential:

 Low

Infection Channel 1 : Spammed via email

Description: 

To get a one-glance comprehensive view of the behavior of this malware, refer to the Behavior Diagram shown below.

TROJ_ACDROPPER.K Behavior Diagram

Malware Overview

This Trojan arrives as an MS Data Access (.MDB) file attached to a spammed email message purporting to be from a Japanese government agency, which tricks users into thinking that it is a legitimate file. The said attachments can also arrive as a PDF file.

It exploits a certain Microsoft vulnerability to drop and execute an embedded file, detected by Trend Micro as TROJ_AGENT.PXT. Thus, routines of the dropped file may be exhibited on the system.

For additional information about this threat, see:
Solution
Technical Details

Description created: Sep. 4, 2007 8:16:06 AM GMT -0800

Search a new malware

Tell us how we did. Take our quick survey.