SecurityHome.eu TrojanDownloader:BAT/Lnkget.AH

Home / malware PDF

TrojanDownloader:BAT/Lnkget.AH

First posted on 27 July 2010.
Source: SecurityHome
Aliases :
TrojanDownloader:BAT/Lnkget.AH is also known as BAT/TrojanDownloader.Ftp.NIJ.Gen (ESET), Trojan-Downloader.Win32.Pif.aay (Kaspersky), Mal/DownLnk-B (Sophos).
Explanation :
TrojanDownloader:BAT/Lnkget.AH is a detection for a shortcut link that when opened, connects to a remote server using TFTP to download and execute arbitrary VBScript files.
Top

TrojanDownloader:BAT/Lnkget.AH is a detection for a shortcut link that when opened, connects to a remote server using TFTP to download and execute arbitrary VBScript files. InstallationTrojanDownloader:BAT/Lnkget.AH may arrive on a user's computer as an attachment to an e-mail. PayloadTrojanDownloader:BAT/Lnkget.AH attempts to downloads a VBScript file from the remote server tftft.nET over TFTP (Trivial File Transfer Protocol). The downloaded file is saved as "k.vbs" and then executed. Note: At the time of publishing, the file on remote sever was not available.

Analysis by Aaron Putnam
Last update 27 July 2010

TOP

Malware :

Last 20

TrojanDownloader:BAT/Lnkget.AH

Aliases :

Explanation :

Malware :

Family: