TrendLabs Malware Blog
Glossary
TrendWatch
TrendLabs Twitter
TROJ_MSJET.C
Overview
Solution

Malware type: Trojan

Aliases: Trojan-Dropper.MSAccess.Jet.l (Kaspersky), Exploit-MSJet (McAfee), Trojan.Acdropper (Symantec), EXP/JetDB4.A (Avira), Troj/Mdrop-BQR (Sophos), Exploit:Win32/Jdrop.gen!A (Microsoft)

In the wild: Yes

Destructive: No

Language: English

Platform: Windows 98, ME, NT, 2000, XP, Server 2003

Encrypted: No

Overall risk rating:

Reported infections:

Damage potential:

 Medium

Distribution potential:

 Low

Description: 

Trend Micro threat researchers post findings and analyses on various threats in real-time at the Malware Blog. Users can find more information about this specific threat here.

To get a one-glance comprehensive view of the behavior of this malware, refer to the Behavior Diagram shown below.

TROJ_MSJET.C Behavior Diagram

Malware Overview

This Trojan is a Microsoft Database (MDB) file that may be launched by a malicious .DOC file as a mail-merge file once the said document is opened.

Upon execution, it uses a known vulnerability to parse the .DOC file. This routine allows the said .DOC file to drop an embedded malicious .EXE file.

For more information regarding the said vulnerability, refer to the following Microsoft Web pages:

For additional information about this threat, see:
Solution
Technical Details

Description created: Mar. 23, 2008 1:46:20 AM GMT -0800

Search a new malware

Tell us how we did. Take our quick survey.