Trojan.Maljava Description

The term Trojan.Maljava refers to a group of Java files designed to take advantage of several security vulnerabilities in Java. The Trojan.Maljava group of malware has been active since 2010 and, while low in incidence, is quite harmful. In 2011, Trojan.Maljava malware infections made headlines due to being associated with fake airline ticket notifications right before Thanksgiving. Criminals use the holiday season to take advantage to the increase in air travel as an opportunity to create various phishing emails designed to spread malware such as the Trojan.Maljava group of Java exploits. To protect yourself from Trojan.Maljava, ESG security researchers strongly recommend implementing basic safe practices when using your computer system.

Preventing a Trojan.Maljava Malware Invasion on Your Computer System

To prevent a Trojan.Maljava infection, ESG security researchers recommend using a strong firewall that is fully updated. Block all incoming connections and then only authorize those that you are absolutely sure are safe. It is also important to make sure that you use strong passwords to protect your computer system and accounts. This can help prevent becoming infected in the first place, and can limit any potential damage after a Trojan.Maljava infection. It is also important to limit the privileges on your computer system and to disable AutoPlay for any executable files on external drives or on the network. Malware such as the Trojan.Maljava group of Java Trojans can take advantage of this feature to invade a computer system without needing the computer user’s authorization.

To prevent a Trojan.Maljava malware infection, ESG security researchers also recommend maintaining your operating system, security program and other applications fully updated and patched. Software companies are constantly releasing new updates to counteract exploits that are found. In fact, Java developers have gradually started to close the security vulnerabilities that the Trojan.Maljava group of malware attempts to exploit. Since the Trojan.Maljava typically spreads through email, you should also avoid opening unknown file attachments and to block all email containing files with extensions associated with malware infections (such as .exe, .vbs, .bat, .pif and .scr). Of course, any automatic protection is useless, unless the computer user is aware that email attachments may contain dangerous Trojans such as Trojan.Maljava malware. Because of this, ESG malware analysts recommend implementing basic computer security training among your network users, to prevent Trojan.Maljava and other malware infections.

Type: Trojans

How Can You Detect Trojan.Maljava?

Trojan.Maljava Removal Details

Trojan.Maljava has typically the following processes in memory:

• Temp~2.exe
• ntshrui.dll

Trojan.Maljava creates the following files in the system:

• /Users/Shared/update.sh
• /Users/Shared/update.py
• Temp~2.py

Trojan.Maljava creates the following registry entries:

• HKEY_CURRENT_USER\Software\Trojan.Maljava
• HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\Trojan.Maljava

Important Article Disclaimer