Lavasoft Malware Labs Blog
Malware Encyclopedia
Platform: Win32
Type: Trojan
Size: 448980 bytes
Language: C++
MD5: ae97672ce3937ef4e845bdca86c0971c
SHA1: 0c5e4b9f92a408c92de6ad95ea083664c0992f06
Summary
Trojan.Win32.Carberp is a Trojan spyware designed to steal confidential user’s data from trade and online banking platforms.
Platform: Win32
Type: Backdoor
Size: 280576 bytes
Packer: unknown
Unpacked size: ~750 Kb
Language: C++
MD5: c4c4f7cee346d4cb1faa4bcac6e5bf5
SHA1: e973239500b4fb216182043805453cea9edf8730
Aliases : Trojan.Win32.Generic!BT
Summary
Backdoor.Shiz is a Trojan spyware designed to provide the intruder remote access to the infected PC and steal confidential data.
Platform: Win32
Type: Trojan
Size: 126976 bytes
Packer: unknown
Unpacked size: 320 Kb
Language: C++
MD5: 85f087a291256829f418a3be3dd76ad8
SHA1: 112d92cdd5165af9c0d22f931e77f929b97395fa
Aliases: Dorkbot, Trojan.Win32.Generic!BT
Summary
Nrgbot is a Trojan-spy program designed to steal confidential data.
Platform: Win32
Type: Trojan
Size: 224256 bytes
Packer: PECompact
Unpacked size: 340 Kb
Language: C++
Summary
Virus.Win32.Xpaj.a is a Trojan program which possesses bootkit and virus-like features as well as backdoor features.
Platform: Win32
Type: Backdoor
Size: 212992 bytes
Language: C++
MD5: C46566045F4E77F366299479746DC0EA
SHA1: 97F5F2637289E7537461E64D96D13BF359542FB1
Summary
Trojan.Win32.Jorik.Zbot.azk is a malicious program which provides the attacker with unauthorized remote access to the infected machine.
Platform: Win32
Type: Worm
Size: 73938 bytes
Language: Visual Basic
MD5: 030D70062F0D16D918DFA5ADFDFEE857
SHA1: 33217329687F29A3C8393C52AAB656DABB4E5BCE
Summary
Trojan.Win32.Rimod.b is a worm which copies itself to the local drives of the infected computer.
Platform: Win32
Type: Trojan
Language: Visual Basic
Summary
Trojan.Win32.Lunam.a is a Trojan program which contains the Autorun-worm functionality.
Platform: Win32
Type: Trojan
Size: 414684 bytes
Language: Delphi
MD5: 005091ED437E052596323AA95A043F62
SHA1: 4A3592EEB57DF47AFCDF09D65C3B5222A5ECB5ED
Summary
Trojan.Win32.FakeAV.oyb is a Trojan program that imitates all of the functions that a typical antivirus program would perform to get a fee from users for detecting and removing non-existent threats.
Platform: Win32
Type: Trojan
Size: 20480 bytes
Language: C++
MD5: 0523A92D668A8C33C7EF92536745E066
SHA1: 49244ADBB69F7BE1800A703A8B6959A4E72CFEEA
Summary
Trojan.Win32.Zbot.dkek is a malicious program that is a Windows dynamic library and is a component of another malicious program. The library can be used to inject the code of another malicious library to the web browser process address space as well as create autorun registry keys.
Platform: Win32
Type: Trojan
Size: 237568 bytes
Language: Visual Basic
MD5: 018A76D10A668BF3F403A5FC31A47CD8
SHA1: DB8834E418CC90C36CEC54AD10A3625FFE92C654
Summary
Trojan.Win32.Vobfus.paa is a Trojan program which infects files downloaded from the Internet without user’s knowledge and consent and launches them for execution. It possesses worm-like features: the Trojan can spread via portable computer media as well as shared network resources.
Platform: Win32
Type: Worm
Language: C++
Summary
Worm.Win32.Mabezat.b is a polymorphic worm (worm copies or code of the infected files vary due to encrypting and adding random rubbish data) which creates copies of itself on the local drives and shared network resources.
Platform: Win32, DLL
Type: Trojan
Size: 81384 bytes
Packer: UPX
Language: C++
MD5: 03750525C4BC10E36A40733EAEE37216
SHA1: B2A47CAEC704197997AFC5D34B90CA22929FB5BD
Summary
Trojan.Win32.OnLineGames.IZ is a Trojan program designed to steal user passwords to online games and messenger clients.