Win32/PSW.Furitron [Threat Name] go to Threat

Win32/PSW.Furitron.A [Threat Variant Name]

Category trojan
Size 39118 B
Detection created Sep 03, 2003
Detection database version 499
Aliases Trojan.Furier (Dr.Web)
Short description

Win32/PSW.Furitron.A is a trojan that steals passwords and other sensitive information. The trojan attempts to send gathered information to a remote machine.

Installation

When executed, the trojan copies itself into the following location:

  • %windir%\­RUNDLL.exe

In order to be executed on every system start, the trojan sets the following Registry entry:

  • [HKEY_LOCAL_MACHINE\­Software\­Microsoft\­Windows\­CurrentVersion\­Run]
    • "RUNDLL64" = "RUNDLL.exe"
Information stealing

Win32/PSW.Furitron.A is a trojan that steals passwords and other sensitive information.


The trojan collects the following information:

  • computer IP address
  • login user names for certain applications/services
  • login passwords for certain applications/services

The trojan attempts to send gathered information to a remote machine.


The trojan sends the information via e-mail.

Other information

The trojan may delete the following files:

  • %windir%\­RUNDLL.exe

Please enable Javascript to ensure correct displaying of this content and refresh this page.