is a detection for malicious code that is bundled with Exploit:Java/CVE-2008-5353.A
in a Java applet. It executes other malicious code, detected as Trojan:Java/Selace.D
, that attempts to download and install malware on the vulnerable system.
Trojan:Java/Selace.E is bundled with a malicious Java applet detected as Exploit:Java/CVE-2008-5353.A. The Java applet is a Java archive (.JAR file) that contains the following Java class malware:
On a vulnerable system without a particular Java security update installed, Exploit:Java/CVE-2008-5353.A executes Trojan:Java/Selace.E with full privileges ('AllPermissions').
, in turn, executes Trojan:Java/Selace.D
, again with full privileges. It attempts to download and execute malware on the vulnerable system.
Examples of malware downloaded and run by Trojan:Java/Selace.D include variants of Win32/Renos and Win32/Alureon.
Analysis by Marian Radu
There are no common symptoms associated with this threat. Alert notifications from installed antivirus software may be the only symptom(s).