Home / malware TrojanDownloader:Win32/Fakr.A
First posted on 11 April 2012.
Source: MicrosoftAliases :
TrojanDownloader:Win32/Fakr.A is also known as W32/Troj_Generic.ASIFW (Norman), Trojan.DL.Adload!4NOPlk8EnK0 (VirusBuster), TR/Dldr.Fakr.A.164 (Avira), Trojan.DownLoader5.58232 (Dr.Web), Trojan-Downloader.Win32.Fakr (Ikarus), Trojan-Downloader.Win32.Adload.dbol (Kaspersky).
Explanation :
TrojanDownloader:Win32/Fakr.A is a trojan that downloads files from a remote host, then executes them.
Top
TrojanDownloader:Win32/Fakr.A is a trojan that downloads files from a remote host, then executes them.
Installation
The malware may appear with an installer icon, such as the one shown below, in an attempt to trick the user into running the file:
Payload
Downloads arbitrary files
TrojanDownloader:Win32/Fakr.A contacts a remote host at down.subjet.co.kr/install to download the following files:
- config.php
- subjet.zip
Analysis by Daniel Radu
Last update 11 April 2012