Analysis by: jont
 PLATFORM:

Windows 2000, XP, Server 2003

 OVERALL RISK RATING:
 REPORTED INFECTION:

  • Threat Type: Trojan

  • Destructiveness: No

  • Encrypted: Yes

  • In the wild: Yes

  OVERVIEW

This Trojan executes the dropped file(s). As a result, malicious routines of the dropped files are exhibited on the affected system.

It deletes itself after execution.

  TECHNICAL DETAILS

Tamaño del archivo 33,792 bytes
Tipo de archivo EXE
Residente en memoria No
Fecha de recepción de las muestras iniciales 19 Oct 2010

Installation

This Trojan drops the following file(s)/component(s):

  • %System%\cdbu.euo - detected by Trend Micro as TROJ_SASFIS.AE

(Note: %System% is the Windows system folder, which is usually C:\Windows\System on Windows 98 and ME, C:\WINNT\System32 on Windows NT and 2000, or C:\Windows\System32 on Windows XP and Server 2003.)

Dropping Routine

This Trojan executes the dropped file(s). As a result, malicious routines of the dropped files are exhibited on the affected system.

Other Details

This Trojan deletes itself after execution.