TROJ_SCRIPBRID.A
ESG security researchers have come across a dangerous email attachment which is identified as TROJ_SCRIPBRID.A which attempts to take advantage of the known Flash vulnerability CVE-2012-0779. TROJ_SCRIPBRID.A will often arrive into the victim's invoice as part of an email attempting to attract the victim's attention and pique their curiosity so that they will open the attached DOC file. Once opened, this malicious email attachment will attempt to exploit the previously mentioned Adobe Flash vulnerability in order to install other malware on the victim's computer system.
Table of Contents
How TROJ_SCRIPBRID.A Exploits Flash Vulnerabilities
When the victim opens the TROJ_SCRIPBRID.A file, this fake Microsoft Word document will actually connect to a remote server in order to access SWF files, which trigger the vulnerability in Adobe Systems' Flash Player. This vulnerability allows a criminal to install a backdoor Trojan on the infected computer system. This backdoor Trojan, like a physical back door, can allow a criminal to gain unauthorized access to the victim's computer system while bypassing that computer system's security. The SWF files associated with this attack are identified as SWF_LOADER.EHL and their backdoor payload as BKDR_INJECT.EVL.
One of the most dangerous aspects of the TROJ_SCRIPBRID.A attack is the fact that TROJ_SCRIPBRID.A can attack multiple operating systems. Since Adobe Flash Player is a cross-platform application that is used widely, the TROJ_SCRIPBRID.A infection has been known to attack not only Windows operating systems, but also computer systems running Mac OS X, Linux, and even the Android operating system! Fortunately, Adobe Systems has released a patch that fixes this vulnerability and the latest version of Adobe Flash Player is not vulnerable to the TROJ_SCRIPBRID.A exploit. Because of this, the best way to prevent a TROJ_SCRIPBRID.A-related infection is to ensure that your software, operating system, and web browser are all fully updated.
Possible Results of a TROJ_SCRIPBRID.A Attack
The main objective of a TROJ_SCRIPBRID.A attack is to install a backdoor on the victim's computer system. This is basically an opening in the infected computer system's security. Via this backdoor, malware can contact a command-and-control server that can be utilized to carry out several tasks. The most common ways in which criminals exploit these kinds of back doors is by installing spy Trojans and remote access Trojans on the victim's computer system. Spy software will track keystrokes, take screenshots, and attempt to steal the victim's online accounts and banking information. A remote access Trojan can be used to control the infected machine from a remote location, giving the criminal full control over the victim's machine.
SpyHunter Detects & Remove TROJ_SCRIPBRID.A
File System Details
# | File Name | MD5 |
Detections
Detections: The number of confirmed and suspected cases of a particular threat detected on
infected computers as reported by SpyHunter.
|
---|---|---|---|
1. | file.exe | 1750a38a44151493b675538a1ac2070b | 0 |
Submit Comment
Please DO NOT use this comment system for support or billing questions. For SpyHunter technical support requests, please contact our technical support team directly by opening a customer support ticket via your SpyHunter. For billing issues, please refer to our "Billing Questions or Problems?" page. For general inquiries (complaints, legal, press, marketing, copyright), visit our "Inquiries and Feedback" page.