Encyclopedia entry
Updated:
Apr 17, 2011
| Published:
Nov 23, 2007
Aliases
Trojan-Downloader.Win32.Small.gll
(Kaspersky)
-
Adware:Win32/iSearch.Toolbar
(Microsoft)
-
TrojanDownloader:Win32/Agent.ZM
(Microsoft)
-
W32/Downloader
(Norman)
-
Spyware/7r7t
(Panda)
-
Mal/DownLdr-O
(Sophos)
-
Deskwizz/ZQuest
(Sunbelt Software)
-
Spyware.ISearch
(Symantec)
-
TROJ_DLOADER.DTK
(Trend Micro)
Alert Level
(?)
Severe
Antimalware protection details
Microsoft recommends that you download the
latest definitions
to get protected.
Detection last updated:
Definition: 1.145.1295.0
Released: Mar 07, 2013
|
|
Detection initially created:
Definition: 1.45.287.0
Released: Oct 07, 2008
|
Summary
TrojanDownloader:Win32/Matcash.B is a Trojan that connects to a remote site and downloads and executes arbitrary files. In the wild, this Trojan has been observed to download and install additional malicious and potentially unwanted applications on the affected machine.
Symptoms
-
System Changes
The following system changes may indicate the presence of TrojanDownloader:Win32/Matcash.B:
Technical Information (Analysis)
TrojanDownloader:Win32/Matcash.B is a Trojan that connects to a remote site and downloads and executes arbitrary files. In the wild, this Trojan has been observed to download and install additional malicious and potentially unwanted applications on the affected machine.
Installation
It creates the following files upon execution:
Payload
Downloads and Executes Arbitrary Files
This Trojan may download files from the following site:
The downloaded file is saved and executed from the following location:
The downloaded files are usually additional members of the greater Matcash family.
Prevention
Recovery
