We're gradually updating threat actor names in our reports to align with the new weather-themed taxonomy. Learn about Microsoft threat actor names
Trojan:Win32/Virtumonde.M
Detected by Microsoft Defender Antivirus
Aliases: Vundo (McAfee) W32/Virtumonde.SV (Norman) Virtumonde (Sunbelt Software) Adware.VirtuMonde (Symantec) TROJ_VUNDO.ABJ (Trend Micro)
Summary
Trojan:Win32/Virtumonde.M is a Trojan that installs itself as a Browser Helper Object (BHO) and generates popup advertisements on a user's desktop. This trojan, which takes the form of a DLL, is injected into EXPLORER.EXE by other, additional malware. Advertisements may appear as visible windows or may be hidden from view.
Trojan:Win32/Virtumonde.M may download and install additional malicious software, thus manual removal is not recommended. To detect and remove this Trojan and other malicious software that may have been installed, run a full-system scan with an up-to-date antivirus product such as the Microsoft Safety Scanner (http://go.microsoft.com/fwlink/?LinkId=212742). For more information, visit http://www.microsoft.com/athome/security/downloads/default.mspx.