Home / malware Trojan.Paramcud
First posted on 31 March 2015.
Source: SymantecAliases :
There are no other names known for Trojan.Paramcud.
Explanation :
When the Trojan is executed, it connects to the following URLs: [http://]tnv.cultivr.com/microsoft/errorpost/default/connec[REMOVED][http://]tnv.cultivr.com/microsoftupdate/getupdate/defaul[REMOVED]
The Trojan may then perform the following actions on the compromised computer: Create new processesTraverse the file systemDelete filesUpdate itselfLast update 31 March 2015
