Trojan.GenericKDV.1210899
Threat Scorecard
EnigmaSoft Threat Scorecard
EnigmaSoft Threat Scorecards are assessment reports for different malware threats which have been collected and analyzed by our research team. EnigmaSoft Threat Scorecards evaluate and rank threats using several metrics including real-world and potential risk factors, trends, frequency, prevalence, and persistence. EnigmaSoft Threat Scorecards are updated regularly based on our research data and metrics and are useful for a wide range of computer users, from end users seeking solutions to remove malware from their systems to security experts analyzing threats.
EnigmaSoft Threat Scorecards display a variety of useful information, including:
Ranking: The ranking of a particular threat in EnigmaSoft’s Threat Database.
Severity Level: The determined severity level of an object, represented numerically, based on our risk modeling process and research, as explained in our Threat Assessment Criteria.
Infected Computers: The number of confirmed and suspected cases of a particular threat detected on infected computers as reported by SpyHunter.
See also Threat Assessment Criteria.
| Threat Level: | 80 % (High) |
| Infected Computers: | 11 |
| First Seen: | August 28, 2013 |
| Last Seen: | March 7, 2020 |
| OS(es) Affected: | Windows |
The Trojan.GenericKDV.1210899 Trojan is one of the many variants of the notorious ZeuS banking Trojan. Trojan.GenericKDV.1210899 is commonly associated with a spam email campaign that disguises its messages as fake emails from the Xerox WorkCentre, which may be used in various offices. It is important to know that threats like Trojan.GenericKDV.1210899 may be distributed using fake notifications from printers, scanners and other networked devices that offer email notifications. If your computer is exposed to Trojan.GenericKDV.1210899, it is extremely important to use a strong anti-malware program to scan your machine; Trojan.GenericKDV.1210899 has the ability to steal your bank account details and compromise your password-protected accounts. Trojan.GenericKDV.1210899 is not the first Trojan infection that uses fake email messages disguised as Xerox WorkCentre notifications. Being aware of this can help computer users to avoid clicking on malicious embedded links or download harmful PDF or text files attached to these types of email messages.
Ignore the Bogus Message Displayed by Trojan.GenericKDV.1210899
Email messages used to distribute Trojan.GenericKDV.1210899 use the subject line 'Scan from a Xerox WorkCentre' and contain a message which typically includes the following phrase:
'Please download the document. It was scanned and sent to you using a Xerox multifunction device.'
These email messages typically contain two files, a text file meant to throw computer users off and a RAR or ZIP archive which hides the Trojan.GenericKDV.1210899 infection. These types of archives are commonly used to deliver malware because they may hide executable files and prevent computer users from viewing the contents of the archive without opening it and inadvertently executing its content. Trojan.GenericKDV.1210899 will often try to install other threats on your computer. In most cases, Trojan.GenericKDV.1210899 acts as a backdoor infection that will try to install a Zeus Trojan variant. In most modern malware attacks, there are several malicious components involved, making it difficult to distinguish between the actual banking component and the backdoor component.
Protecting Yourself from Trojan.GenericKDV.1210899
When monitoring spam emails connected to the Trojan.GenericKDV.1210899 attack, it was observed that more than ten thousand spam email messages associated with Trojan.GenericKDV.1210899 were sent to computer users in less than an hour. Due to its use of the Xerox WorkCentre in its attack, it is clear that the intended targets of the Trojan.GenericKDV.1210899 are corporate computers, making it possible that Trojan.GenericKDV.1210899 may be connected to corporate or industrial espionage rings.
Submit Comment
Please DO NOT use this comment system for support or billing questions. For SpyHunter technical support requests, please contact our technical support team directly by opening a customer support ticket via your SpyHunter. For billing issues, please refer to our "Billing Questions or Problems?" page. For general inquiries (complaints, legal, press, marketing, copyright), visit our "Inquiries and Feedback" page.