What is TrustedSource? | Create Account | Login 
Secure Computing Corporation
 
Home  Threats and Trends  Malware Information
TrustedSource™ Query
Enter IP address, CIDR range, domain name or URL:
Search
 

Malware Information

Malware nameScript.Dldr.Iframe.DP
TypeTrojan
Affected platformWin32
Media-Typetext/html
MD5 checksum032B615A1FB33663B4BDC12AE30E40C3
Static fileno
Filesize15,940 Bytes
Alias names
(also known as)
Webwasher ProactiveJavaScript.InfectedPage.gen!Medium
SophosTroj/Unif-B
Protection
Webwasher ProactiveDatabase Version: 77
Side effectsDownloads a malicious file
PropagationNo own spreading routine

Description:

Files

It tries to download a file:

– The location is the following:
• http://traffurl.ru/**********
Furthermore this file gets executed after it was fully downloaded. Further investigation pointed out that this file is malware, too. Detected as: 3438

Secure Computing Corporate Homepage | Contact | Privacy Policy | Disclaimer

Copyright © 2007-2008 Secure Computing Corporation. All Rights Reserved.

THE DATA IS FURNISHED, "AS IS" WITHOUT ANY WARRANTY OF ANY KIND, AND SECURE COMPUTING® HEREBY DISCLAIM ALL WARRANTIES, EXPRESS, IMPLIED OR STATUTORY INCLUDING, WITHOUT LIMITATION, ALL IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE, AND ANY WARRANTIES AS TO NON-INFRINGEMENT, AND IN NO EVENT SHALL SECURE COMPUTING® BE LIABLE FOR COSTS OF PROCURING SUBSTITUTE GOODS. IN NO EVENT WILL SECURE COMPUTING® BE LIABLE FOR ANY INDIRECT, SPECIAL, CONSEQUENTIAL, INCIDENTAL, EXEMPLARY, OR OTHER DAMAGES WHETHER OR NOT SECURE COMPUTING® HAS BEEN ADVISED OF THE POSSIBILITY OF SUCH LOSS OR DAMAGE.