TROJ_PPDROP.EVL
TROJ_PPDROP.EVL is a Trojan that propagates via an infected MS PowerPoint document. TROJ_PPDROP.EVL is delivered as an attachment to the spam email message by cybercriminals. TROJ_PPDROP.EVL is sent via an infected .PPT file. The malicious MS PowerPoint file is found as TROJ_PPDROP.EVL. The malevolent file drops another malicious file called 'Winword.tmp', which is found as BKDR_SIMBOT.EVL. 'Winword.tmp' encompasses a downloaded Flash file, which exploits a Flash Player vulnerability known as CVE-2011-0611 for dropping the Trojan onto the corrupted machine. TROJ_PPDROP.EVL runs the dropped files.
File System Details
TROJ_PPDROP.EVL may create the following file(s):
| # | File Name |
Detections
Detections: The number of confirmed and suspected cases of a particular threat detected on
infected computers as reported by SpyHunter.
|
|---|---|---|
| 1. | %User Temp%\Winword.tmp |
Submit Comment
Please DO NOT use this comment system for support or billing questions. For SpyHunter technical support requests, please contact our technical support team directly by opening a customer support ticket via your SpyHunter. For billing issues, please refer to our "Billing Questions or Problems?" page. For general inquiries (complaints, legal, press, marketing, copyright), visit our "Inquiries and Feedback" page.