Win32/JackServn [Threat Name] go to Threat

Win32/JackServn.B [Threat Variant Name]

Category trojan
Size 124416 B
Short description

Win32/JackServn.B is a trojan which tries to download other malware from the Internet.

Installation

The trojan does not create any copies of itself.


The trojan may create the following files:

  • C:\­%variable%\­ServiceDownloader.ini

A string with variable content is used instead of %variable% .

Other information

The trojan acquires data and commands from a remote computer or the Internet.


The trojan contains a list of (6) IP addresses. The TCP protocol is used in the communication.


It tries to download several files from the addresses.


The files are then executed.


The following programs are terminated:

  • SkyReg.exe
  • RegAiD.exe
  • s_job2.exe
  • s_job1.exe
  • s_job.exe
  • NCleanService.exe
  • GreenGuard.exe
  • Picaigreen.exe

Please enable Javascript to ensure correct displaying of this content and refresh this page.