TROJ_PIDIEF.YYXG
October 31, 2014
ALIASES:
Exploit:Win32/CVE-2010-0188 (Microsoft)
PLATFORM:
Windows
OVERALL RISK RATING:
DAMAGE POTENTIAL:
DISTRIBUTION POTENTIAL:
REPORTED INFECTION:
INFORMATION EXPOSURE:
Threat Type: Trojan
Destructiveness: No
Encrypted: Yes
In the wild: Yes
OVERVIEW
Infection Channel:
Downloaded from the Internet
This Trojan arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites.
It executes the downloaded files. As a result, malicious routines of the downloaded files are exhibited on the affected system.
TECHNICAL DETAILS
File Size:
9,442 bytes
File Type: PDF
Initial Samples Received Date:
28 Oct 2014
Payload:
Downloads files
Arrival Details
This Trojan arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites.
Download Routine
This Trojan accesses the following websites to download files:
- http://{BLOCKED}law.net/news/supported_recommend_talking.php?edl=1f:31:33:33:32&the=1l:1g:2w:1g:1j:33:1i:2v:1m:1l&kjbdsup=1i&xgiqo=counrko&mthm=rdzpolq
It takes advantage of the following software vulnerabilities to download possibly malicious files: