Downloader.Liftoh is a Trojan that drops more malware infections onto the compromised PC. Once run, Downloader.Liftoh replicates itself to the specific location. Downloader.Liftoh creates the registry entry so that it can load automatically whenever you start Windows. Downloader.Liftoh encompasses an injected DLL file which is unpacked into memory. The DLL file can drop and run payloads or inject them into current processes. Downloader.Liftoh drops and runs malevolent files from the specific web addresses.
File System Details
|1||%UserProfile%\Application Data\[RANDOM LETTERS].exe|