Threat Database Trojans Gen:Variant.Kazy.44360

Gen:Variant.Kazy.44360

By JubileeX in Trojans

Threat Scorecard

Ranking: 12,058
Threat Level: 90 % (High)
Infected Computers: 1,032
First Seen: November 21, 2011
Last Seen: August 28, 2023
OS(es) Affected: Windows

Gen:Variant.Kazy.44360 is a damaging Trojan infection that is a component of a fake email message about a rejected transfer that is supposedly sent from Esse Hypothekenbank. The spam email includes an infected link, and if a recipient clicks on it, he/she opens a malicious web page, which attempts to induce the computer user to download an update a falsified Adobe Flash Player that downloads and installs Gen:Variant.Kazy.44360. Even if the computer user ignores a false update offer, he/she has already entered an infected website. The corrupt web page includes a .php file which hides an obfuscated Java script. This Java script initiates an application which functions as a drive-by-downloader. It attempts to exploit the user's machine by attacking a vulnerability described in CVE-2010-0840. If the exploit is successful, the application will download additional data to the victim's PC. The downloaded .dll file is, in fact, Gen:Variant.Kazy.44360. The corrupt web page also attempts to affect the computer user with social engineering methods by suggesting a supposedly necessary software update and uses the technical techniques to start a drive-by-infection. If you get a fraudulent email from Esse Hypothekenbank, do not click the link and download and install the fake update because Gen:Variant.Kazy.44360 will take over your PC.

Trending

Most Viewed

Loading...