Home / malware Trojan:Win32/Conedex.C
First posted on 29 February 2012.
Source: MicrosoftAliases :
Trojan:Win32/Conedex.C is also known as TR/Redirector.BF (Avira), Trojan.Redirector.JS.BF (BitDefender), Win32/Redirector.A trojan (ESET), Trojan.Redirector (Ikarus), Troj/ZAccess-AG (Sophos), TROJ_REDIRECT.AL (Trend Micro).
Explanation :
Trojan:Win32/Conedex.C is a malicious JavaScript. The script sends a POST request to a certain server, and clicks on links in the reply.
Top
Trojan:Win32/Conedex.C is a malicious JavaScript. The script sends a POST request to a certain server, and clicks on links in the reply.
Payload
Clicks on links
When the JavaScript executes, it creates POST requests to a certain server. The server's reply may contain links. to certain webpages The JavaScript code then randomly clicks on the links contained in the POST reply.
Analysis by Stefan Sellmer
Last update 29 February 2012
