[警报]Trojan.Haradong.C 柊かがみ木马（Lucky star的镜囧）

kouko · 发表于 2007-5-17 01:25:08

Trojan.Haradong.C

Risk Level 1: Very Low

Discovered: May 11, 2007
Updated: May 14, 2007 11:00:11 AM
Type: Trojan
Infection Length: 3,476,874 bytes
Systems Affected: Windows 2000, Windows 95, Windows 98, Windows Me, Windows NT, Windows Server 2003, Windows XP

When the Trojan is executed, it deletes certain files on the compromised computer. It then replaces the files with a .bmp file of the same name. For example, sample.txt will be replaced by the following file:
sample.txt .bmp

Next, the Trojan may download files from the following Web sites:
[http://]harada2006.hp.infoseek.co.jp/ARES-[REMOVED]
[http://]harada2006.hp.infoseek.co.jp/ARES-[REMOVED]
[http://]harada2006.hp.infoseek.co.jp/PROV[REMOVED]

The above files are a copy of Trojan.Pirlames and are saved to the following locations:

%SystemDrive%\KAGAMI\taskmgr.exe
%SystemDrive%\KAGAMI\explorer.exe
%SystemDrive%\KAGAMI\JPG.exe

汗不是恶搞的已经在share和winny上泛滥了详情参照

这里

[ Last edited by kouko on 2007-5-17 at 01:39 AM ]

冤枉吖 · 发表于 2007-5-17 08:26:28

是新病毒?

达克 · 发表于 2007-5-17 08:41:03

感谢大大的告知

can8900523 · 发表于 2007-5-17 08:54:37

......这木马也学幸运星恶搞.......偶赶紧去更新下病毒库先

kernel · 发表于 2007-5-17 09:08:50

恶作剧

冬日 · 发表于 2007-5-17 12:15:19

好久不上share和winny了

kouko · 发表于 2007-5-17 16:04:22

某kagami迷借木马传教

peachdears · 发表于 2007-5-17 16:14:30

囧神要来了吗?..

账号		自动登录	找回密码
密码			新猫注册

[警报]Trojan.Haradong.C 柊かがみ木马（Lucky star的镜 囧）

[警报]Trojan.Haradong.C 柊かがみ木马（Lucky star的镜囧）