Home / malware TrojanDownloader:Win32/Beebone.JD
First posted on 10 July 2013.
Source: MicrosoftAliases :
TrojanDownloader:Win32/Beebone.JD is also known as Trojan.Win32.Jorik.Fareit.qru (Kaspersky).
Explanation :
TrojanDownloader:Win32/Beebone.JD is a trojan that silently downloads and installs other programs without consent. This could include the installation of additional malware or malware components to an affected computer. Installation TrojanDownloader:Win32/Beebone.JD creates the following files on an affected computer:
Payload Contacts remote host TrojanDownloader:Win32/Beebone.JD may contact a remote host at 14121.dns6y.net using port 2323. Commonly, malware may contact a remote host for the following purposes:
- %windir%\temp\scs10.tmp
- %windir%\temp\scs11.tmp
- %windir%\temp\scse.tmp
- %windir%\temp\scsf.tmp
- c:\documents and settings\administrator\0zf6.exe
- c:\documents and settings\administrator\1zf6.exe
- To report a new infection to its author
- To receive configuration or other data
- To download and execute arbitrary files (including updates or additional malware)
- To receive instruction from a remote attacker
- To upload data taken from the affected computer
This malware description was produced and published using our automated analysis system's examination of file SHA1 cdc6b079b76c1b5fe9416f03fefb4350871bdb4a.Last update 10 July 2013
