Thumbs up for the latest in automated analysis

ThreatExpert looking good today !

In comes a new virus undetected by everything on VirusTotal. Just had a quick look and immediately thought it looks like a VIRUT .. this is the only detection

Note the automated analysis thinks certain system files are deleted, this is another sign that they were infected by the virus or hidden by the rootkit, or both.

Please note: While TrojanHunter doesn’t deal with viruses in most cases, detection for the sample will be added very shortly since it was scanning 100% clean and analysis will take some time. The computer systems analysing the malware took over 3 minutes, an eternity when talking trillions of operations a second.

This entry was posted on Wednesday, January 2nd, 2008 at 3:45 am and is filed under Security, Trojans. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.

2 Responses to “Thumbs up for the latest in automated analysis”

  1. Nu Osiris Says:
    January 2, 2008 at 7:31 am | Reply

    I have tried to remove it manually before any of the anti-spyware/virus softwares has updated definitions for it, it was impossible and I was unable to do it. I don’t get mad at it, I just envy the talent of someone who creates these elaborate rootkits.

    ./Nu Osiris

  2. Gavin Says:
    January 3, 2008 at 4:17 am | Reply

    I should have known ! it’s an old one aka Trojan-Proxy.Win32.Small.du , has been around for some time just an updated version

Leave a Reply