SecurityHome.eu Worm:W32/Downadupjob.gen

Home / malware PDF

Worm:W32/Downadupjob.gen

First posted on 23 January 2009.
Source: SecurityHome
Aliases :
There are no other names known for Worm:W32/Downadupjob.gen.
Explanation :
Worm:W32/Downadupjob.gen is detection for .JOB files used by the Downadup worm.

right]Worm:W32/Downadupjob.gen!A

Downadupjob is generic detection of .JOB files created by the Downadup worm.

Windows Task Scheduler Task Object

Downadup attempts to spread itself using Windows Scheduled Tasks.

Legitimate tasks are usually located in the following folder:

WINDOWSTASKS

The .JOB file defines a scheduled task, which in Downadup's case triggers an execution of the worm library via rundll32.exe.

Please see the following descriptions for additional details:

Worm:W32/Downadup.gen

Worm:W32/Downadup.AL

Worm:W32/Downaduprun.A

Last update 23 January 2009

TOP

Malware :

RATDispenser
whispergate
Borat RAT
Trojanized X_Trader
BlackLotus

Last 20

Family:

Worm:W32/Downadupjob.gen!
Worm:W32/Downaduprun.A
Worm:W32/Downadup
Worm:W32/Downadup.A
Worm:W32/Downadup.DY
Worm:W32/Downadupjob.gen!A
Worm:W32/Downadup.gen
Worm:W32/Downadupjob.gen
Worm:W32/Downadupjob.gen
Worm:W32/Downadup.AL