BleepingComputer.com > Vundo.downloader

Full Version: Vundo.downloader - New IFRAME Trojan Horse

BleepingComputer.com > Security > Breaking Virus & Security News

harrywaldron

Nov 14 2004, 07:30 AM

Please be careful with HTML based SPAM email

Vundo.downloader - New IFRAME Trojan Horse
http://vil.nai.com/vil/content/v_129972.htm

This trojan was recently installed via an HTML page that contained the Exploit-IframBO trojan. It is believed that the exploit code may have been mailed to a large number of email addresses. Accessing the exploit file results in vulnerable Internet Explorer web browsers executing download code, which downloads and executed Vundo.dldr. Vundo.dldr is a small trojan that simply connects to a specific IP address to download and execute another file. The trojan author has built this trojan to download and execute the Vundo trojan.

This is a "lo-fi" version of our main content. To view the full version with more information, formatting and images, please click here.