Malware type: Trojan

Aliases: Trojan-Downloader.Win32.Agent.avk (Kaspersky), Generic Downloader.ab (McAfee), Downloader (Symantec), TR/Dldr.Agent.avk.3 (Avira), Troj/DwnLdr-GVF (Sophos),

In the wild: Yes

Destructive: No

Language: English

Platform: Windows 98, ME, NT, 2000, XP, Server 2003

Encrypted: No

Description: 

To get a one-glance comprehensive view of the behavior of this malware, refer to the Behavior Diagram shown below.

Malware Overview

This Trojan reportedly arrives via a spammed email message. The message purports to be a notification for a Microsoft Security Bulletin and its accompanying link pretends to be the patch/update for the vulnerability discussed in the said bulletin. Clicking this link, however, downloads a copy of this Trojan on an affected system.

It can also be dropped by other malware or downloaded by a user when visiting malicious Web sites.

This Trojan accesses certain URLs to download possibly malicious files. However, these URLs are inaccessible as of this writing.

For additional information about this threat, see:
Solution
Technical Details

Description created: Jun. 11, 2007 6:57:28 AM GMT -0800

Search a new malware

Tell us how we did. Take our quick survey.