SecurityHome.eu Trojan-Downloader:JS/Agent.CTK

Home / malware PDF

Trojan-Downloader:JS/Agent.CTK

First posted on 05 September 2008.
Source: SecurityHome
Aliases :
There are no other names known for Trojan-Downloader:JS/Agent.CTK.
Explanation :
This type of trojan secretly downloads malicious files from a remote server, then installs and executes the files.

right]This trojan uses Shockwave Flash Object (SWFObject) Java Script to view the following crafted SWF content on the browser page:

http://jzm015.cn/[Removed]115.swf

http://jzm015.cn/[Removed]64.swf

http://jzm015.cn/[Removed]47.swf

http://jzm015.cn/[Removed]45.swf

http://jzm015.cn/[Removed]28.swf

http://jzm015.cn/[Removed]16.swf

All of the listed SWF files are detected as Exploit.SWF.Downloader.eh.

The purpose of the malicious flash file is to download additional malware.
Last update 05 September 2008

TOP

Malware :

RATDispenser
whispergate
Borat RAT
Trojanized X_Trader
BlackLotus

Last 20

Family:

Trojan:W32/Qhost.JE
Exploit.JS.Agent.F
Trojan-Downloader:HTML/Agent.DY
Trojan-Downloader:HTML/Agent.DY
Trojan-Downloader:HTML/Agent.DY
Trojan.Downloader.JS.Agent.PB
Trojan.Cidox!kmem
Trojan.Ransomlock!g75
Trojan.Klovbot!gen2
Trojan.Poweliks!gm