TrendLabs Malware Blog
Glossary
TrendWatch
TrendLabs Twitter
TROJ_ALUREON.AH
Overview
Solution

Malware type: Trojan

Aliases: Trojan.Win32.Inject.bnc (Kaspersky), Infostealer.Banker.C (Symantec), TR/Vundo.Gen (Avira), Mal/Generic-A (Sophos),

In the wild: Yes

Destructive: No

Language: English

Platform: Windows 98, ME, NT, 2000, XP, Server 2003

Encrypted: Yes

Overall risk rating:

Reported infections:

Damage potential:

 Medium

Distribution potential:

 Low

Description: 

Trend Micro threat researchers post findings and analyses on various threats in real-time at the Malware Blog. Users can find more information about this specific threat here.

To get a one-glance comprehensive view of the behavior of this malware, refer to the Behavior Diagram shown below.

TROJ_ALUREON.AH Behavior Diagram

Malware Overview

This Trojan is dropped by TROJ_ZLOB.CCW. It seaches for certain strings in the URL cache. If these strings are not found, this Trojan modifies a registry entry.

It searches the Windows folder for an executable file, which it executes and injects with its code once found.

For additional information about this threat, see:
Solution
Technical Details

Description created: May. 10, 2008 5:37:15 AM GMT -0800

Search a new malware

Tell us how we did. Take our quick survey.