Win32/TrojanDownloader.Banload [Threat Name] go to Threat

Win32/TrojanDownloader.Banload.QRE [Threat Variant Name]

Category trojan
Size 11264 B
Aliases TrojanDownloader:Win32.Banload.AHJ (Microsoft)
  Generic.Downloader.x!g2x (McAfee)
Short description

Win32/TrojanDownloader.Banload.QRE is a trojan which tries to download other malware from the Internet. The file is run-time compressed using UPX .


The trojan does not create any copies of itself.

Other information

The trojan contains an URL address.

It tries to download several files from the address.

These are stored in the following locations:

  • %system%\­drivers\­etc\­hosts
  • %system%\­GetDiskSerial.dll
  • %system%\­regss.exe
  • %system%\­cmd.bat

The files are then executed. The HTTP protocol is used.

Please enable Javascript to ensure correct displaying of this content and refresh this page.