Home / malware Trojan.Dropper.Binder.B
First posted on 21 November 2011.
Source: BitDefenderAliases :
There are no other names known for Trojan.Dropper.Binder.B.
Explanation :
When executed, the binded file drops the document in
%Temp%Summary on China's 2006 Defense White paper.doc
and opens it with the system's default editor, also drops
%Temp%sav.exe
and executes it as a hidden application, in the background.
On systems with Microsoft Office installed, if the doc file is specially crafted, it can exploit some vulnerability in Microsoft Word and execute remote code.Last update 21 November 2011
