Description:
Trend Micro threat researchers post findings and analyses on various threats in real-time at the Malware Blog. Users can find more information about this specific threat here. |
To get a one-glance comprehensive view of the behavior of this malware, refer to the Behavior Diagram shown below.
Malware Overview
This Trojan usually arrives as an attachment to a email messages spammed by another malware or a malicious user. It is the Trend Micro detection for a specially crafted .DOC file that exploits the Microsoft Jet Database Engine vulnerability.
The said vulnerability allows a malicious .DOC file to drop and execute files. As a result, routines of the dropped files are also exhibited on the affected system.
For more information can be found in the following link:
Note that this detection is a zero-day exploit because it attacks a software vulnerability for which the vendor has not released a patch. This may pose as a dangerous situation in which a lot of computers may be affected due to the availability of the exploit code, and the fact that there is no available patch for the vulnerability.
Trend Micro detects the dropped files as the following:
For additional information about this threat, see:
Solution
Technical Details
Description created: Mar. 22, 2008 8:45:12 PM GMT -0800
Search a new malware
Tell us how we did. Take our quick survey.
|
Save & Share
