Home / malwarePDF  

TrojanDropper:MSIL/Drogcatchaft.A


First posted on 30 November 2010.
Source: SecurityHome

Aliases :

TrojanDropper:MSIL/Drogcatchaft.A is also known as Trojan-Dropper.MSIL.Mudrop.dv (Kaspersky), W32/Suspicious_Gen2.BPQOO (Norman), Trojan.Agent2!CHqVNbae2/g (VirusBuster), Trojan horse Dropper.Generic2.AATW (AVG), TR/Agent.163840.AD (Avira), Trojan.Generic.4663428 (BitDefender), Trojan.MulDrop1.40725 (Dr.Web), Trojan-Dropper.MSIL (Ikarus), Mal/Mdrop-BL (Sophos).

Explanation :

TrojanDropper:MSIL/Drogcatchaft.A is a detection for malware that obfuscates, and drops and installs files.
Top

TrojanDropper:MSIL/Drogcatchaft.A is a detection for malware that obfuscates, and drops and installs files. TrojanDropper:MSIL/Drogcatchaft.A drops the following file: %TEMP%\Crypted.exe TrojanDropper:MSIL/Drogcatchaft.A reads an RC4 encrypted file that is embedded in its own file; it then decrypts this file and drops it the %TEMP% directory with the name Crypted.exe, then runs it.

Analysis by Michael Johnson

Last update 30 November 2010

 

TOP

Malware :

Family: