Threat Database Trojans TrojanDownloader:Win32/Vundo.E

TrojanDownloader:Win32/Vundo.E

By Sumo3000 in Trojans

Threat Scorecard

Threat Level: 90 % (High)
Infected Computers: 10
First Seen: February 15, 2013
Last Seen: June 17, 2022
OS(es) Affected: Windows

TrojanDownloader.Win32.Vundo.E is a Trojan that distributes other malware infections to the vulnerable PC. While being installed, TrojanDownloader:Win32/Vundo.E makes system changes by dropping and executing malevolent files. TrojanDownloader:Win32/Vundo.E appears as a DLL file, using different file names. When launched, TrojanDownloader:Win32/Vundo.E checks to see if it's running within a process with any of the file names linked to a legal process name. If TrojanDownloader:Win32/Vundo.E executes, then it assumes that a PC user is surfing the Internet, and strive to connect to a distant server at the same time to bypass suspicion. If TrojanDownloader:Win32/Vundo.E successfully connects, it drops a file in the corrupted PC. TrojanDownloader:Win32/Vundo.E steals personal information, involving what version of Windows is running in the affected computer system. TrojanDownloader:Win32/Vundo.E also checks if specific security program is running, by checking if the specific processes are running.

File System Details

TrojanDownloader:Win32/Vundo.E may create the following file(s):
# File Name Detections
1. %AppData%\Microsoft\Windows\Cookies\ru
2. %AppData%\Microsoft\Windows\Cookies\rua
3. %AppData%\Microsoft\Windows\Cookies\cf

Trending

Most Viewed

Loading...