TROJ_PDROPPER.BA - Description and solution

TrendLabs Malware Blog

Glossary

TrendWatch

TrendLabs Twitter

TROJ_PDROPPER.BA

Overview

Solution

Technical Details

Malware type: Trojan

Aliases: Trojan-Dropper.MSWord.1Table.eb (Kaspersky), Trojan.PPDropper (Symantec), EXP/Office.Dropper.Gen (Avira),

In the wild: Yes

Destructive: No

Language: English

Platform: Windows 98, ME, NT, 2000, XP, Server 2003

Encrypted: No

Overall risk rating:

Reported infections:
Damage potential:		High
Distribution potential:		Low

Description:

This Trojan is dropped by other malware or is downloaded unknowingly by a user when visiting malicious Web sites.

It spreads by exploiting a vulnerability in Windows discussed in Microsoft Security Bulletin MS06-012.

If successfully exploited, the said vulnerability may allow this Trojan to drop and execute a file detected by Trend Micro as BKDR_EMBED.W. Thus, routines of the dropped malware may be exhibited on the system.

Upon execution, it displays this Microsoft PowerPoint slide:

{When executed, it displays this Microsoft Powerpoint slide/presentation:}

This Japanese text translates to �Status: Taiwan Situation� (June 1, 2007: Support Members Debrief Session) Japan Interchange Association, Taipei Office.

For additional information about this threat, see:
Solution
Technical Details

Description created: May. 30, 2007 7:22:09 PM GMT -0800

Search a new malware

Tell us how we did. Take our quick survey.