Threat Database Trojans TSPY_PIXSTEAL.A

TSPY_PIXSTEAL.A

By Sumo3000 in Trojans

TSPY_PIXSTEAL.A is a Trojan that steals information from affected computer users. TSPY_PIXSTEAL.A can steal photos, personal and work-related information files from victims. TSPY_PIXSTEAL.A can use stolen photos for future malware attacks, identity theft, or blackmail. TSPY_PIXSTEAL.A steals image files from all drives of targeted PCs and then transmits them to a remote FTP server. TSPY_PIXSTEAL.A opens a hidden command line and copies all files with .jpg, .jpeg, and .dmp extensions from C:\ , D:\, and E:\ directories to C:\. TSPY_PIXSTEAL.A uploads all files located in the C:\ directory to the defined FTP website using certain credentials. The files with the extensions .jpg and .jpeg files are associated with file formats mainly used for images, while .dmp files are memory dump files that encompass information on why a specific PC doe not work.

File System Details

TSPY_PIXSTEAL.A may create the following file(s):
# File Name Detections
1. List{malware path and filename} = "{malware path and filename}:*:Enabled:{Port}"

Trending

Most Viewed

Loading...