Analysis by: Anthony Joe Melgarejo
ALIASES:

Generic.dx (McAfee), Trojan.KillAV (Symantec), TR/Crypt.NSPM.Gen (Avira), W32/Threat-HLLIN-Slipper-based!Maximus (F-Prot)

 PLATFORM:

Windows 2000, Windows Server 2003, Windows XP (32-bit, 64-bit), Windows Vista (32-bit, 64-bit), Windows 7 (32-bit, 64-bit)

 OVERALL RISK RATING:
 REPORTED INFECTION:
 SYSTEM IMPACT RATING:
 INFORMATION EXPOSURE:

  • Threat Type: Spyware

  • Destructiveness: No

  • Encrypted:

  • In the wild: Yes


  TECHNICAL DETAILS

Tamaño del archivo Varies
Tipo de archivo EXE
Fecha de recepción de las muestras iniciales 23 Jan 2012

Heuristic Detection

This is the Trend Micro heuristic detection for suspicious files that manifest similar behavior and characteristics as the following malware:

  • TSPY_ONLINEG

If your Trend Micro product detects a file under this detection name, do not execute the file. Delete it immediately especially if it came from an untrusted or an unknown source (e.g., a Web site of doubtful nature).

NOTES:
However, if you have reason to believe that the detected file is non-malicious, you can submit a sample for analysis. Detailed analysis will be done on submitted samples, and corresponding removal instructions will be provided, if necessary.