Lavasoft Malware Labs Blog
Malware Encyclopedia
Platform: Win32
Type: Trojan
Size: 16896 bytes
Language: Visual Basic
MD5: ebe60fa9bf0dfcf7c00ddbaaf14da510
SHA1: 8ea7e3b9e7c8b7c6ad6d4b5afc94e71185a6e8b7
Summary
Trojan-Downloader.Win32.Beebone is a Trojan which downloads files via the Internet without user’s knowledge or consent. The Trojan can be spread using the following name:
Platform: Win32
Type: Trojan
Size: 16896 bytes
Language: C++
MD5: 8d326300a6f4dfe93a456c4c185bf2a
SHA1: a01dee0fdb5a752afea044c4e4fe4534ef5a23f6
Aliases : Backdoor:Win32.Poison
Summary
Trojan.Win32.Generic!BT is a Trojan which extracts from itself another malicious program providing the attacker with unauthorized remote access to the infected computer. The Trojan is installed on the system by another malicious program which uses the critical vulnerability CVE-2012-4969.
Platform: Win32
Type: Backdoor
Size: 40448 bytes
Packer: UPX
Unpacked size: ~95 Kb
Language: C++
MD5: 8fb5b6fcad0d7e67bf750a9194f19dfc
SHA1: 4749575d1b929f6f03f196ad6c7d04ee8d940dbd
Aliases : Trojan.Win32.Generic!BT
Summary
Trojan.Win32.OnlineGames is a program that belongs to the Trojan family stealing passwords to online game accounts.
Platform: Win32
Type: Trojan
Size: 448980 bytes
Language: C++
MD5: ae97672ce3937ef4e845bdca86c0971c
SHA1: 0c5e4b9f92a408c92de6ad95ea083664c0992f06
Summary
Trojan.Win32.Carberp is a Trojan spyware designed to steal confidential user’s data from trade and online banking platforms.
Platform: Win32
Type: Backdoor
Size: 280576 bytes
Packer: unknown
Unpacked size: ~750 Kb
Language: C++
MD5: c4c4f7cee346d4cb1faa4bcac6e5bf5
SHA1: e973239500b4fb216182043805453cea9edf8730
Aliases : Trojan.Win32.Generic!BT
Summary
Backdoor.Shiz is a Trojan spyware designed to provide the intruder remote access to the infected PC and steal confidential data.
Platform: Win32
Type: Trojan
Size: 224256 bytes
Packer: PECompact
Unpacked size: 340 Kb
Language: C++
Summary
Virus.Win32.Xpaj.a is a Trojan program which possesses bootkit and virus-like features as well as backdoor features.
Platform: Win32
Type: Backdoor
Size: 212992 bytes
Language: C++
MD5: C46566045F4E77F366299479746DC0EA
SHA1: 97F5F2637289E7537461E64D96D13BF359542FB1
Summary
Trojan.Win32.Jorik.Zbot.azk is a malicious program which provides the attacker with unauthorized remote access to the infected machine.
Platform: Win32
Type: Worm
Size: 73938 bytes
Language: Visual Basic
MD5: 030D70062F0D16D918DFA5ADFDFEE857
SHA1: 33217329687F29A3C8393C52AAB656DABB4E5BCE
Summary
Trojan.Win32.Rimod.b is a worm which copies itself to the local drives of the infected computer.
Platform: Win32
Type: Trojan
Language: Visual Basic
Summary
Trojan.Win32.Lunam.a is a Trojan program which contains the Autorun-worm functionality.
Platform: Win32
Type: Trojan
Size: 414684 bytes
Language: Delphi
MD5: 005091ED437E052596323AA95A043F62
SHA1: 4A3592EEB57DF47AFCDF09D65C3B5222A5ECB5ED
Summary
Trojan.Win32.FakeAV.oyb is a Trojan program that imitates all of the functions that a typical antivirus program would perform to get a fee from users for detecting and removing non-existent threats.
Platform: Win32
Type: Trojan
Size: 20480 bytes
Language: C++
MD5: 0523A92D668A8C33C7EF92536745E066
SHA1: 49244ADBB69F7BE1800A703A8B6959A4E72CFEEA
Summary
Trojan.Win32.Zbot.dkek is a malicious program that is a Windows dynamic library and is a component of another malicious program. The library can be used to inject the code of another malicious library to the web browser process address space as well as create autorun registry keys.
Platform: Win32
Type: Trojan
Size: 237568 bytes
Language: Visual Basic
MD5: 018A76D10A668BF3F403A5FC31A47CD8
SHA1: DB8834E418CC90C36CEC54AD10A3625FFE92C654
Summary
Trojan.Win32.Vobfus.paa is a Trojan program which infects files downloaded from the Internet without user’s knowledge and consent and launches them for execution. It possesses worm-like features: the Trojan can spread via portable computer media as well as shared network resources.
