SecurityHome.eu Trojan:Win32/Pdfdown.A

Home / malware PDF

Trojan:Win32/Pdfdown.A

First posted on 19 May 2015.
Source: Microsoft
Aliases :
There are no other names known for Trojan:Win32/Pdfdown.A.
Explanation :
Threat behavior

Installation

This threat can arrive on your PC as a PDF spam email attachment.

We have seen the PDF imitating a DHL delivery report, using the file name DHL_12.05_85642048506.pdf

Payload

Downloads other malware

The PDF file contains a URL link to a malicious website that can download other malware onto your PC, including Trojan:Win32/Emotet.G.

We have seen the malicious link redirecting to the following URL:

scar.krzysztofmrela.

Analysis by Zhitao Zhou

Symptoms

Alerts from your security software might be the only symptom.

Last update 19 May 2015

TOP

Malware :

RATDispenser
whispergate
Borat RAT
Trojanized X_Trader
BlackLotus

Last 20

Family:

Trojan:Win32/Pdfdown.A