7 Comments

• Digg
• Bury

f**king slideshow


#1 Java.Trojan.Downloader.OpenConnection.AO

This Trojan downloader is contained within manipulated Java applets found on websites. When the applet is downloaded, a URL is generated from the applet parameters, which the downloader uses to upload a malicious executable file onto the user's computer and run it. These kinds of files can be any type of malware. The downloader exploits the CVE-2010-0840 security hole to break out of the Java sandbox and write data to the system.


#2 Trojan.Wimad.Gen.1

This Trojan pretends to be a normal .wma audio file, albeit one that can only be played after installing a special codec/decoder on Windows systems. If the user runs the file, the attacker can install malware of any kind on the user's system. The infected audio file is mainly distributed via P2P networks.


#3 Gen:Variant.Adware.Hotbar.1

This adware is generally secretly installed, as part of free software packages from programs such as VLC, XviD, etc., which are downloaded from sources other than the provider. The supposed sponsors of the current software version are 'Clickpotato' and 'Hotbar'. All packages are digitally signed by "Pinball Corporation" and the adware is automatically launched every time Windows is started, integrating itself as a systray icon.


#4 Worm.Autorun.VHG

This malware program is a worm that uses the autorun.inf function in Windows operating systems to distribute itself. It uses removable storage devices such as USB sticks or portable hard drives. It is an Internet and network worm and exploits the CVE-2008-4250 vulnerability.


#5 Java.Trojan.Downloader.OpenConnection.AI

(text for this one just copied and pasted from #1 from the most part..lazy)


#6 Trojan.AutorunINF.Gen

This generic recognition software is able to recognize known and unknown malicious autorun.inf files. Autorun.inf files are autostart files that are exploited as computer malware distribution mechanisms on USB devices, removable storage devices, CDs and DVDs.


#7 Java.Trojan.Downloader.OpenConnection.AN

(another one where they mostly copied and pasted from #1)
This Trojan downloader is contained in manipulated Java applets found on websites. When the applet is downloaded, a URL is generated from the applet parameters. The downloader uses this to upload a malicious executable file onto the user's computer and run it. These kinds of files can be any type of malware. The downloader exploits the CVE-2010-0840 security hole to break out of the Java sandbox and write data to the system.



#8 Java.Agent-DU

This Java-based malware program is a download applet that tries to use a security hole (CVE-2010-0840) to circumvent the sandbox protection mechanism and download additional malware onto the computer. Once the applet has fooled the sandbox, it can directly download and run .exe files. This is something that a simple applet cannot do, as the Java sandbox prevents it from doing so.

#9 Trojan.FakeAlert.CJM

This malware program tries to tempt computer users into downloading fake antivirus software that is actually the FakeAV program. In doing so, the website imitates the user's Windows Explorer and indicates that there are numerous alleged infections. As soon as the user clicks something on the website, a downloadable file is offered that contains the actual FakeAV program, e.g. a variant of System Tool.


#10 HTML:Downloader-AU

This Java-based malware is an applet that downloads an HTML page. This primed HTML site tries to use a security hole (described in CVE-2010-4452) to download a Java class from a URL to the vulnerable Java VM. The attacker uses this to try and bypass the VM protection mechanisms, thereby creating a way to carry out almost any kind of activity on the computer.



ITBusinessedge .com - what a joke.

• Reply