TROJ_ARTIEF.EDX
TROJ_ARTIEF.EDX is a Trojan that is incorporated in an email scam associated with Tibetan. TROJ_ARTIEF.EDX is distributed via spam emails allegedly pushing Tibetan culture, which supposedly carry instructions on how to use the Input Method by Tibetans who might use Apple iOS 4.2 gadgets. Claiming that for making Tibetan culture widespread by helping people who want to learn Tibetan language, the bogus mail states that 'Digital Tibetan' recently developed the 'Input Method' for Tibetans who wish to successfully operate Apple iOS 4.2 gadgets. The described lexicon can be loaded for free. The made-up suggestions together with all associated files are attached to the email notification. TROJ_ARTIEF.EDX is distributed as a malicious attachment to the deceptive email. TROJ_ARTIEF.EDX downloads a file that is a backdoor and is affected by a file infector. Then, the unsolicited email declares that for any problem in using the program, or requirement of suggestions, computer users may get back with their feedback. After all, while expressing gratitude because the computer user selected Digital Tibetan, the email message reports that his/her selection has directly helped to make Tibetan culture widespread.
The fraudulent email claims that the attachment carries guidance about perusing the help-text before installing it; de-condensing the .zip archive having the configuration files; and loading them for use. However, in truth, the attachments fit exactly the RTF files, which have been found as TROJ_ARTIEF.EDX, which takes advantage of the CVE-2010-3333 RTF Stack Buffer Overflow Vulnerability for installing another threat called BKDR_RILER.SV, a backdoor Trojan with yet another Trojan called PE_SALITY.AC, onto the temp files of the computer system. The malicious RTF files as well inject elements for unfolding an attractive .doc file, masking its malicious actions. These files also prevent any suspicion among the victims by creating one lawful document, which includes guidance on how to operate Apple devices through the Tibetan Input Method. Therefore, the infected elements seizing the corrupted PC system enable attackers to obtain unauthorized remote access and control over the affected PC.
SpyHunter Detects & Remove TROJ_ARTIEF.EDX
File System Details
| # | File Name | MD5 |
Detections
Detections: The number of confirmed and suspected cases of a particular threat detected on
infected computers as reported by SpyHunter.
|
|---|---|---|---|
| 1. | %User Temp%\svchost.exe | ||
| 2. | 1.exe | b3242d0afa13b543804ba6fc28c9346f | 0 |
Submit Comment
Please DO NOT use this comment system for support or billing questions. For SpyHunter technical support requests, please contact our technical support team directly by opening a customer support ticket via your SpyHunter. For billing issues, please refer to our "Billing Questions or Problems?" page. For general inquiries (complaints, legal, press, marketing, copyright), visit our "Inquiries and Feedback" page.