SecurityHome.eu Exploit.HTML.Agent.AO

Home / malware PDF

Exploit.HTML.Agent.AO

First posted on 21 November 2011.
Source: BitDefender
Aliases :
Exploit.HTML.Agent.AO is also known as Trojan-Downloader.JS.Agent.bqv, JS/Exploit-Shell.gen, Mal/JSShell-B, JS_AGENT.AKNS.
Explanation :
This is a Microsoft TIF/TIFF exploit (MS07-055) that uses specially crafted .tif image files to allow remote code execution. The malware will download and execute on the infected computer the file
http://www.gamerost.com/[removed]/npceok.exe,
detected at the moment of this description as Trojan.Crypt.Delf.D.

The operating systems vulnerable to this exploit are:
Microsoft Windows 2000 SP4
Windows XP SP2
Windows Server 2003 SP1
Windows Server 2003 SP2
For more information about this exploit please visit:
http://www.microsoft.com/technet/security/bulletin/MS07-055.mspx
Last update 21 November 2011

TOP

Malware :

RATDispenser
whispergate
Borat RAT
Trojanized X_Trader
BlackLotus

Last 20

Family:

Exploit.JS.Agent.F
Trojan-Downloader:HTML/Agent.DY
Trojan.Downloader.JS.Agent.PB
Trojan-Dropper:W32/Agent.CMW
Trojan-Downloader:W32/Agent.TPF
Trojan-Dropper:W32/Agent.DSM
Trojan-Downloader:W32/Agent.BOY
Trojan-Dropper:W32/Agent.PR
Email-Worm:W32/Agent.BC
Trojan.Clicker.Agent.NP