MSIL/Steamazo [Threat Name] go to Threat

MSIL/Steamazo.B [Threat Variant Name]

Category trojan
Size 674816 B
Detection created Oct 22, 2014
Detection database version 10604
Aliases Trojan.SteamBurglar.65 (Dr.Web)
Short description

MSIL/Steamazo.B is a trojan that steals sensitive information. The trojan attempts to send gathered information to a remote machine.

Installation

The trojan does not create any copies of itself.

Information stealing

The trojan collects information related to the following applications:

  • Steam

The trojan searches for files with the following file extensions:

  • *.*

Only following folders are searched:

  • %steamrootfolder%\­
  • %steamrootfolder%\­config\­

The collected information is stored in the following file:

  • %steamrootfolder%\­963553143.rar

The trojan attempts to send the archive to a remote machine. The trojan contains a URL address. The HTTP protocol is used.

Please enable Javascript to ensure correct displaying of this content and refresh this page.