You should beware of a corrupt PowerPoint file that is designed to deliver a backdoor Trojan, referred to as TROJ_PPDROP.EVL, into the victim’s computer. This malicious file takes advantage of vulnerabilities in Adobe Flash in order to install a dangerous backdoor Trojan while at the same time displaying an actual PowerPoint presentation to distract the victim while this goes on in the background. TROJ_PPDROP.EVL can eventually be used to control the infected computer system from afar, install other malware or steal information from the infected computer system. TROJ_PPDROP.EVL is a severe threat to a computer’s security that should be dealt with immediately. ESG security analysts recommend immediate action with a dedicated anti-malware application that is fully updated.
TROJ_PPDROP.EVL Distracts You While It Installs Malware in the Background
TROJ_PPDROP.EVL uses an exploit in order to get a backdoor Trojan past your computer system’s security. There is an embedded Adobe Flash file in the TROJ_PPDROP.EVL malicious PowerPoint document. When TROJ_PPDROP.EVL runs, this embedded Flash file will take advantage of the Adobe Software CVE-2011-0611 vulnerability. Many Adobe products – including Flash Player, Acrobat, and Reader – are vulnerable to this exploit if they are not updated with the latest security patch. The main goal of the TROJ_PPDROP.EVL file is to display an actual PowerPoint presentation to distract the computer user while TROJ_PPDROP.EVL file installs a dangerous backdoor Trojan identified as BKDR_SIMBOT.EVL. Once installed, this backdoor Trojan can hide quite effectively, making prevention and interception of TROJ_PPDROP.EVL the best way to deal with this attack. If you have opened PowerPoint files attached to unsolicited email messages, ESG security analysts strongly advise scanning your machine with a reliable anti-malware application in order to ensure that your computer system has not been compromised.
Do Not Become a Victim of the TROJ_PPDROP.EVL Attack!
You can take several preventive measures to avoid becoming a victim of TROJ_PPDROP.EVL:
- Update your Adobe Software to receive the latest fixes for possible vulnerabilities and exploits. You should ensure that your updates come directly from the manufacturer.
- Never open unsolicited email attachments, regardless of whether they are supposedly ’safe’ files like Word documents, PDF files or PowerPoint presentations. There are exploits that can use these kinds of documents to deliver malware into your computer system.
- Make sure that you use a reliable anti-malware scanner and a strong anti-spam filter at all times.
How Can You Detect TROJ_PPDROP.EVL ?
TROJ_PPDROP.EVL Removal Details
TROJ_PPDROP.EVL creates the following files in the system:
- %User Temp%\Winword.tmp