SecurityHome.eu Trojan.Downloader.JKIJ

Home / malware PDF

Trojan.Downloader.JKIJ

First posted on 21 November 2011.
Source: BitDefender
Aliases :
Trojan.Downloader.JKIJ is also known as Trojan-Downloader.Win32.Murlo.nn, Trj/Downloader.UCP, TROJ_MURLO.BA.
Explanation :
- the trojan is a DLL which is dropped and loaded by another malware;
- its only action is to download a trojan to %temp%QQ_Update.cab which is heuristically detected by BitDefender as BehavesLike:Win32.ExplorerHijack;
- after executing the new trojan it moves itself to %temp%qqsXXXX.tmpqqsXXXX.tmp and schedules to be deleted at next reboot (XXXX represents a string of at least 1 and maximum 4 hex digits);
- although it seems as a simple trojan, it is very dangerous because the downloaded trojan also downloads over 40 other malware.
Last update 21 November 2011

TOP

Malware :

RATDispenser
whispergate
Borat RAT
Trojanized X_Trader
BlackLotus

Last 20