Search Threat Database
Search by threat name
W32/Downloader.gen
Severity: Medium 
|
|
Category:
|
|
Target:
|
|
Date Added:
|
|
Description:
Program that downloads other malicious software to an infected machine
Filename: Various
Filesize: Various
Infection: Downloaders are primarily applications that download and execute other malicious software. Downloaders may also download multiple files to the infected host.
Downloaders may spread using any of a number of methods. For example, email attachments, Network Shares, etc.
Downloaders will usually use Hyper Text Transfer Protocol (HTTP) to download additional software but the TCP port can vary. Some Downloaders may also use other protocols to download malicious software.
Downloaders may add themselves to the infected host’s registry keys to cause the Downloader to be run as a system service and/or to be started every time the system is started. For example:
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunServices
Some Downloaders may delete themselves once the malicious software is downloaded.
|
|
Protection:
iolo AntiVirus version 1.00 or higher with definition files dated on the discovery date given above or higher will detect and disinfect this Virus.
|
|
TERMS OF USE: This information is provided for educational purposes only and is intended for personal, non-commercial use. Data is believed accurate based on ongoing and historical research, but is not guaranteed or warranted for any purpose and iolo technologies shall not be liable for its use or misuse in any way. This information is the property of iolo technologies, LLC and may not be copied, reproduced, distributed, or republished without iolo technologies' prior written consent. Copyright 2007 iolo technologies, LLC. All worldwide rights reserved. Certain portions used by permission from Paul Collins.
|
|