Thank you for being a valued part of the CNET community. As of December 1, 2020, the forums are in read-only format. In early 2021, CNET Forums will no longer be available. We are grateful for the participation and advice you have provided to one another over the years.

Thanks,

CNET Support

General discussion

MultiDropper-JL - trojan

Mar 17, 2004 5:14AM PST

Date Discovered: 3/7/2004
Date Added: 3/17/2004
Origin: Unknown
Length: Varies
Type: Trojan
SubType: Dropper

Virus Characteristics

This detection is for a trojan designed to drop and execute other files on the victim machine. The exact filesize, filename will vary according to how the dropper is configured.

When run, the dropper simply extracts and runs the file(s) it contains. The dropper itself does not install in any any onto the victim machine. Subsequent system changes (file system, Registry etc) will be due to the dropped files that have been run.

One sample received by AVERT was configured to drop a dialer application, detected as application Dialer-RAS.as. The dropper was circulated as:

SVSHOST.EXE (23,816 bytes)
The file is packed with UPX.

http://us.mcafee.com/virusInfo/default.asp?id=description&virus_k=101105

Discussion is locked