Win32/TrojanDownloader.FakeAlert [Threat Name] go to Threat

Win32/TrojanDownloader.FakeAlert.BBT [Threat Variant Name]

Category trojan
Size 80896 B
Detection created Jul 28, 2010
Detection database version 5320
Aliases Downloader-CEW.au (McAfee)
Short description

Win32/TrojanDownloader.FakeAlert.BBT is a trojan which tries to download other malware from the Internet.

Installation

The trojan does not create any copies of itself.

Information stealing

The trojan collects the following information:

  • list of disk devices and their type
  • computer name
  • information about the operating system and system settings

The trojan attempts to send gathered information to a remote machine.


The trojan contains a list of (3) URLs. The HTTP protocol is used.

Other information

The trojan tries to download and execute several files from the Internet.


The trojan checks for Internet connectivity by trying to connect to the following servers:

  • ikea.com
  • sitesell.com
  • google.ae

The trojan may set the following Registry entries:

  • [HKEY_CURRENT_USER\­Software\­Microsoft\­Windows\­CurrentVersion\­Internet Settings\­Zones]
    • "1806" = 0

Please enable Javascript to ensure correct displaying of this content and refresh this page.