Home / malware TrojanDropper:Win32/Zupdax.A!dha
First posted on 22 January 2015.
Source: MicrosoftAliases :
There are no other names known for TrojanDropper:Win32/Zupdax.A!dha.
Explanation :
Threat behavior
Installation
This threat can create files on your PC, including:
- %ALLUSERSPROFILE%\updata\mcutil.dll - detected as Backdoor:Win32/Zupdax.A!dha
- %ALLUSERSPROFILE%\updata\ server.db
- %ALLUSERSPROFILE%\updata\spoolsv.exe
- %CurrentFolder%\input\data.ini - malware configuration file
- %CurrentFolder%\malware.exe - malware copy
Payload
Installs malware or unwanted software
This trojan can install other malware or unwanted software onto your PC.
This malware description was published using automated analysis of file SHA1 3223f040cdfa4a3f51aeed35ebcf1d8de9a2e634. Symptoms
The following can indicate that you have this threat on your PC:
- You see these files:
- %ALLUSERSPROFILE%\updata\mcutil.dll
- %ALLUSERSPROFILE%\updata\spoolsv.exe
- %CurrentFolder%\malware.exe
Last update 22 January 2015
