Virus Profile: MultiDropper-RU.cfg
Virus Profile: MultiDropper-RU.cfg
Risk Assessment
- Home Users: Low
- Corporate Users: Low
Date Discovered: 12/11/2007
Date Added: 12/11/2007
Origin: N/A
Length: N/A
Type: Trojan
SubType: Configurator
DAT Required: 5183
Virus Characteristics
Malware configurators are usually used by the attacker to create a malicious file, which is then sent to the victim.
Screenshots of this trojan configurator is given below:
From the screenshots given above, it is evident that this multidropper configurator is used for joining one executable file with another. It also seems possible to change the icon of the resulting file.
Usually a clean file is combined with a malicious file and then sent to a victim. This is done to trick the victim into executing the malicious file, which looks innocent.
Indications of Infection
Other than the presence of the above mentioned file, there are no visible symptoms for the existence of this configurator.
Method of Infection
Not applicable for trojan configurators.
Removal Instructions
A combination of the latest DATs and the Engine will be able to detect and remove this threat. AVERT recommends users not to trust seemingly familiar or safe file icons, particularly when received via P2P clients, IRC, email or other media where users can share files.