Lavasoft Malware Labs Blog
Malware Encyclopedia
TrojanDownloader:Win32/Adload.DP!bit (Microsoft), Trojan-Downloader.NSIS.Adload.bx (Kaspersky), Trojan.Vittalia.7648 (DrWeb), Artemis!38E137FE27B1 (McAfee), Trojan.Gen (Symantec), Win32:Malware-gen (Avast), TROJ_GEN.R00XC0DBD17 (TrendMicro), Trojan.GenericKD.4573345 (AdAware), Installer.Win32.SmartIM.FD, Trojan.NSIS.StartPage.FD, mzpefinder_pcap_file.YR, InstallerSmartIM.YR (Lavasoft MAS)
Behaviour: Trojan-Downloader, Trojan, Installer, Malware
Gen:Variant.Symmi.38453 (BitDefender), Worm:Win32/Dorkbot (Microsoft), HEUR:Trojan.Win32.Generic (Kaspersky), Trojan.Win32.Generic!BT (VIPRE), Gen:Variant.Symmi.38453 (B) (Emsisoft), Artemis!06D185A05A77 (McAfee), Trojan.Gen.2 (Symantec), Trojan.Win32.Qadars (Ikarus), Gen:Variant.Symmi.38453 (FSecure), Atros5.BMAD (AVG), Win32:Evo-gen [Susp] (Avast), Gen:Variant.Symmi.38453 (AdAware), Worm.Win32.Dorkbot.FD, WormDorkbot.YR, GenericUDPFlooder.YR, GenericIRCBot.YR, GenericMSNWorm.YR, GenericUSBInfector.YR, GenericDNSBlocker.YR, GenericDownloader.YR, GenericAutorunWorm.YR, GenericSYNFlooder.YR, GenericInjector.YR, BankerGeneric.YR, GenericProxy.YR, GenericPhysicalDrive0.YR (Lavasoft MAS)
Behaviour: Banker, Trojan, Flooder, Worm, WormAutorun, IRCBot, MSNWorm, DNSBlocker, UDPFlooder, SYNFlooder, Trojan-Proxy, USBInfector
InstallCore (fs) (VIPRE), Trojan.InstallCore.2892 (DrWeb), Application.InstallAd (A) (Emsisoft), Artemis!8289234918CF (McAfee), Trojan.Gen.2 (Symantec), PUA.InstallCore (Ikarus), Generic.C9F (AVG), Installer.Win32.InnoSetup.2.FD, Trojan.Win32.Sasfis.FD, mzpefinder_pcap_file.YR (Lavasoft MAS)
Behaviour: Trojan, Installer
Gen:Variant.FAkeAlert.105 (BitDefender), HEUR:Trojan.Win32.Generic (Kaspersky), Trojan.KeyLogger.38291 (DrWeb), Gen:Variant.FAkeAlert.105 (B) (Emsisoft), PUP-XAS-EG (McAfee), Trojan.Gen.8!cloud (Symantec), PUA.Keylogger.Ardamax (Ikarus), Gen:Variant.FAkeAlert.105 (FSecure), Win32/Herz.B (AVG), Win32:Malware-gen (Avast), TSPY_ARDAMAX.SM1 (TrendMicro), Gen:Variant.FAkeAlert.105 (AdAware), SpyTool.Win32.Ardamax.FD, GenericEmailWorm.YR (Lavasoft MAS)
Behaviour: Keylogger, Trojan, Worm, EmailWorm, PUP, SpyTool, Malware
Gen:Variant.Kazy.60420 (BitDefender), Backdoor:Win32/Cycbot.B (Microsoft), HEUR:Trojan.Win32.Generic (Kaspersky), Backdoor.Win32.Gbot.qxn (v) (VIPRE), BackDoor.Gbot.2028 (DrWeb), Gen:Variant.Kazy.60420 (B) (Emsisoft), BackDoor-EXI.gen.aj (McAfee), Backdoor.Cycbot!gen10 (Symantec), Virus.Win32.Cryptor (Ikarus), Gen:Variant.Kazy.60420 (FSecure), Win32/Cryptor (AVG), Win32:MalOb-IK [Cryp] (Avast), BKDR_CYCBOT.SMTE (TrendMicro), Gen:Variant.Kazy.60420 (AdAware), Backdoor.Win32.Cycbot.FD, Trojan.Win32.Swrort.3.FD, BackdoorCycbot.YR (Lavasoft MAS)
Behaviour: Trojan, Backdoor, Virus
Trojan.MSIL.Crypt.dpxz (Kaspersky), Trojan.Win32.Generic!BT (VIPRE), Trojan.DownLoader24.56762 (DrWeb), Artemis!3D7B3E7EFDAA (McAfee), Trojan.Gen.2 (Symantec), Zum.Rastarby (Ikarus), Gen:Variant.Razy.171382 (FSecure), MSIL11.BANQ (AVG), Trojan.Win32.Iconomon.FD, Trojan.Win32.Sasfis.FD, VirTool.Win32.DelfInject.FD, GenericEmailWorm.YR, TrojanSwrortProxy.YR, GenericInjector.YR (Lavasoft MAS)
Behaviour: Trojan, Worm, EmailWorm, VirTool
Gen:Variant.Razy.156032 (BitDefender), HEUR:Trojan.Win32.Generic (Kaspersky), Gen:Variant.Razy.156032 (B) (Emsisoft), Trojan-FLJP!2B8BA18C0135 (McAfee), ML.Attribute.HighConfidence (Symantec), Trojan.MSIL.Injector (Ikarus), Gen:Variant.Razy.156032 (FSecure), HackTool.Win32.PassView.FD, GenericAutorunWorm.YR, HackToolPassView.YR (Lavasoft MAS)
Behaviour: Trojan, Worm, HackTool, WormAutorun
Trojan.Generic.7569151 (BitDefender), Trojan:Win32/Belanit.A (Microsoft), Trojan.Win32.Scar.fvtq (Kaspersky), Trojan.Win32.Generic!BT (VIPRE), Trojan.DownLoader5.37709 (DrWeb), Trojan.Generic.7569151 (B) (Emsisoft), Artemis!63FEB48B87B6 (McAfee), W32.Spybot.Worm (Symantec), Trojan.Win32.Scar (Ikarus), Trojan.Generic.7569151 (FSecure), Agent.6.AR (AVG), Win32:Kryptik-GWT [Trj] (Avast), PAK_Generic.009 (TrendMicro), Trojan-Banker.Win32.Brasil.FD, Trojan.Win32.Delphi.FD, Trojan.Win32.Sasfis.FD, VirTool.Win32.DelfInject.FD, GenericPhysicalDrive0.YR (Lavasoft MAS)
Behaviour: Banker, Trojan, Worm, VirTool
Gen:Variant.FAkeAlert.105 (BitDefender), HEUR:Trojan.Win32.Generic (Kaspersky), Trojan.KeyLogger.38249 (DrWeb), Gen:Variant.FAkeAlert.105 (B) (Emsisoft), SMG.Heur!gen (Symantec), PUA.Keylogger.Ardamax (Ikarus), Gen:Variant.FAkeAlert.105 (FSecure), Win32/Herz.B (AVG), Win32:Malware-gen (Avast), TSPY_ARDAMAX.SM1 (TrendMicro), Gen:Variant.FAkeAlert.105 (AdAware), SpyTool.Win32.Ardamax.FD, GenericEmailWorm.YR (Lavasoft MAS)
Behaviour: Keylogger, Trojan, Worm, EmailWorm, SpyTool, Malware
ML.Attribute.HighConfidence (Symantec), Generic_r.ITW (AVG), Win32:Evo-gen [Susp] (Avast), Trojan-PSW.Win32.MSNPassword.FD, Trojan.Win32.FlyStudio.FD, GenericEmailWorm.YR, GenericPhysicalDrive0.YR, TrojanFlyStudio.YR (Lavasoft MAS)
Behaviour: Trojan-PSW, Trojan, Worm, EmailWorm
Trojan.GenericKD.3680563 (BitDefender), not-a-virus:HEUR:RiskTool.Win32.Generic (Kaspersky), OptimizerPro (fs) (not malicious) (VIPRE), Trojan.PWS.Tibia.2591 (DrWeb), Application.AdClean (A) (Emsisoft), PUP-XAQ-RQ (McAfee), PUA.OptimizerPro (Symantec), PUA.SpeedingUpMyPC (Ikarus), Trojan.GenericKD.3680563 (FSecure), Generic.77D (AVG), Win32:UnwantedSig [PUP] (Avast), HT_SPEEDINGUPMYPC_GB210006.UVPM (TrendMicro), Adware.GenericKD.3687544 (AdAware), Trojan-Banker.Win32.Brasil.FD, Trojan.Win32.Delphi.FD, Trojan.Win32.Sasfis.FD, VirTool.Win32.DelfInject.FD, GenericEmailWorm.YR (Lavasoft MAS)
Behaviour: Banker, Trojan, Worm, EmailWorm, PUP, VirTool, Adware
Gen:Variant.Symmi.38453 (BitDefender), Worm:Win32/Dorkbot (Microsoft), Worm.Win32.Ngrbot.blbl (Kaspersky), Trojan.Win32.Generic!BT (VIPRE), BackDoor.IRC.NgrBot.42 (DrWeb), Gen:Variant.Symmi.38453 (B) (Emsisoft), Trojan-FLTZ!021C01051F05 (McAfee), Trojan.Gen.2 (Symantec), Trojan.Win32.Qadars (Ikarus), Gen:Variant.Symmi.38453 (FSecure), Generic_r.SAO (AVG), Win32:GenMalicious-NUT [Trj] (Avast), Gen:Variant.Symmi.38453 (AdAware), Worm.Win32.Dorkbot.FD, WormDorkbot.YR, GenericUDPFlooder.YR, GenericIRCBot.YR, GenericMSNWorm.YR, GenericUSBInfector.YR, GenericDNSBlocker.YR, GenericDownloader.YR, GenericAutorunWorm.YR, GenericSYNFlooder.YR, GenericInjector.YR, BankerGeneric.YR, GenericProxy.YR, GenericPhysicalDrive0.YR (Lavasoft MAS)
Behaviour: Banker, Trojan, Flooder, Worm, WormAutorun, IRCBot, MSNWorm, DNSBlocker, UDPFlooder, SYNFlooder, Trojan-Proxy, USBInfector
