Content

New Downloader.b

Type
Trojan
SubType
Heuristic
Discovery Date
05/24/2006
Length
Varies
Minimum DAT
4769 (05/24/2006)
Updated DAT
5002 (04/05/2007)
Minimum Engine
5.1.00
Description Added
05/24/2006
Description Modified
06/14/2006 9:52 AM (PT)
Risk Assessment
Corporate User
Low
Home User
Low

Tab Navigation

Characteristics

This is a heuristic detection which detects unknown downloader trojans crafted as SWF Macromedia Flash files. These files may be used to download other malware from remote websites and prompts the user to execute and install them using misleading messages.

If a sample is detected as New Downloader.b, it is likely that the system may be installed with other malware.

Samples detected as "New Downloader.b" should be submitted to Avert Labs.

 

Symptoms

These malware typically opens a remote connection via HTTP or FTP upon the viewing/opening of a Macromedia Flash file in the web browser. It is likely to download .EXE or other executable files, and may prompt the user for installation.

 

 

 

Method of Infection

This is a heuristic detection.  The specific methods of infection may not be known as it is likely that the sample detected is a new virus or trojan.  Please submit the sample to Avert for analysis.

 

Removal

This detection is an indication that the file is identified heuristically and it is requested that a sample of the file is sent to McAfee AVERT for analysis.

Refer to the online instructions for sending samples.

Variants

Variants

    N/A

All Information

Overview -

This is a trojan detection. Unlike viruses, trojans do not self-replicate. They are spread manually, often under the premise that they are beneficial or wanted. The most common installation methods involve system or security exploitation, and unsuspecting users manually executing unknown programs. Distribution channels include email, malicious or hacked web pages, Internet Relay Chat (IRC), peer-to-peer networks, etc.

Characteristics

Characteristics -

This is a heuristic detection which detects unknown downloader trojans crafted as SWF Macromedia Flash files. These files may be used to download other malware from remote websites and prompts the user to execute and install them using misleading messages.

If a sample is detected as New Downloader.b, it is likely that the system may be installed with other malware.

Samples detected as "New Downloader.b" should be submitted to Avert Labs.

 

Symptoms

Symptoms -

These malware typically opens a remote connection via HTTP or FTP upon the viewing/opening of a Macromedia Flash file in the web browser. It is likely to download .EXE or other executable files, and may prompt the user for installation.

 

 

 

Method of Infection

Method of Infection -

This is a heuristic detection.  The specific methods of infection may not be known as it is likely that the sample detected is a new virus or trojan.  Please submit the sample to Avert for analysis.

 

Removal -

Removal -

This detection is an indication that the file is identified heuristically and it is requested that a sample of the file is sent to McAfee AVERT for analysis.

Refer to the online instructions for sending samples.

Variants

Variants -

    N/A