TROJ_CHEPVIL.C - Description and solution

TrendLabs Malware Blog

Glossary

TrendWatch

TrendLabs Twitter

TROJ_CHEPVIL.C

Overview

Solution

Technical Details

Malware type: Trojan

Aliases: No Alias Found

In the wild: Yes

Destructive: No

Language: English

Platform: Windows 98, ME, NT, 2000, XP, Server 2003

Encrypted: No

Overall risk rating:

Reported infections:
Damage potential:		Low
Distribution potential:		Low

Description:

To get a one-glance comprehensive view of the behavior of this malware, refer to the Behavior Diagram shown below.

TROJ_CHEPVIL.C Behavior Diagram

Malware Overview

This Trojan arrives as attachment to email messages spammed by another malware or a malicious user.

${TROJ_CHEPVIL.C email}$

Trend Micro detects the compressed attachment in the email as TROJ_CHEPVIL.RAR. The said email provides a password which is used to extract the attachment's .EXE content, which Trend Micro detects as TROJ_CHEPVIL.C.

It accesses Web sites to download files. As a result, malicious routines of the downloaded files are exhibited on the affected system. It then executes the downloaded files. As a result, malicious routines of the downloaded files are exhibited on the affected system.

For additional information about this threat, see:
Solution
Technical Details

Description created: Aug. 5, 2008 11:51:35 AM GMT -0800

Search a new malware

Tell us how we did. Take our quick survey.