TrendLabs Malware Blog
Glossary
TrendWatch
TrendLabs Twitter
TROJ_RANDSOM.A
Overview
Solution

Malware type: Trojan

Aliases: No Alias Found

In the wild: Yes

Destructive: No

Language: English

Platform: Windows 98, ME, NT, 2000, XP, Server 2003

Encrypted: No

Overall risk rating:

Reported infections:

Damage potential:

 Medium

Distribution potential:

 Low

Description: 

To get a one-glance comprehensive view of the behavior of this malware, refer to the Behavior Diagram shown below.

TROJ_RANDSOM.A Behavior Diagram

This Trojan may be downloaded from remote sites by other malware. It may be dropped by other malware. It may be downloaded unknowingly by a user when visiting malicious Web sites.

It displays the following fake error message:

{Fake error message}

It searches for and encrypts files found on any readable and writable drive. As a result, the said files cannot be accessed. This Trojan instructs affected users to contact certain email addresses in order to obtain a decrypting tool for the encrypted files.

For additional information about this threat, see:
Solution
Technical Details

Description created: Nov. 28, 2008 6:19:43 AM GMT -0800

Search a new malware

Tell us how we did. Take our quick survey.