MultiDropper-SK Description
MultiDropper-SK is a trojan downloader designed to download and install multiple types of additional malware on a victims computer. MultiDropper-SK will use an icon similar to Java SDK installer with filename avg.exe to deceive computer users about its identity.
Technical Information
File System Details
MultiDropper-SK creates the following file(s):
| # | File Name | Detection Count |
|---|---|---|
| 1 | C:\Program Files %systemroot%\Temp\ | N/A |
| 2 | C:\Documents and Settings\[user's folder]\Application Data | N/A |
Registry Details
MultiDropper-SK creates the following registry entry or registry entries:
Registry key
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run "avg"
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\explorer\run "Update.exe"
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\explorer\run "Macromedia Flash Player Addon"
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce "Cleanup"