SecurityHome.eu TrojanDownloader:MSIL/Crydap.A

Home / malware PDF

TrojanDownloader:MSIL/Crydap.A

First posted on 24 February 2016.
Source: Microsoft
Aliases :
There are no other names known for TrojanDownloader:MSIL/Crydap.A.
Explanation :
Installation

This malware can in the system as a .zip file named PDF_DPD-11394029384.zip. The threat masks itself as part of Adobe Systems file components named DPD_11394029384.pdf.scr.

Payload

Downloads malware or runs files

This threat can download other malware and unwanted software onto your PC.

When the malware is installed and executed, it can download and run a malicious file detected as Ransom:MSIL/Crydap.A named package.pdcr from the following remote servers that we have seen it connect to.

annaflowersweb.com

cloudnet.online

jodielane100.com

kundenserver.de

shabanstore.com

subzone3.2fh.co

Analysis by: Marianne Mallen

Last update 24 February 2016

TOP

Malware :

RATDispenser
whispergate
Borat RAT
Trojanized X_Trader
BlackLotus

Last 20

Family:

TrojanDownloader:MSIL/Crydap.A