Trojan.Brisv.A

Trojan.Brisv.A is a Trojan horse that infects media files which may cause Windows Media Player to access a malicious URL.

The Trojan horse searches the compromised computer for .asf, .mp2, .mp3, .wma and .wmv files, which it then infects. When opened in Windows Media Player the infected files cause the program to connect to a malicious URL which may result in more malware being downloaded on to the compromised computer.

Infected media files may be downloaded on to the computer through file-sharing programs.

Files infected with Trojan.Brisv.A are detected as Trojan.Brisv.A!inf.

Symantec recommends downloading and running the Trojan.Brisv.A!inf Removal Tool to disinfect the affected media files.


For more information, please read the following:
The Trojan.Brisv.A Threat
Sharing Isn’t Always Caring

Note: As of February 3, 2009 Symantec is observing an increase in the number of infected media files related to this threat. Downloading and running the removal tool will disinfect these media files and updated definitions will prevent reinfection.

Protection

• Initial Rapid Release version July 18, 2008 revision 036
• Latest Rapid Release version May 15, 2009 revision 002
• Initial Daily Certified version July 19, 2008 revision 005
• Latest Daily Certified version May 15, 2009 revision 003
• Initial Weekly Certified release date July 23, 2008

Click here for a more detailed description of Rapid Release and Daily Certified virus definitions.

Threat Assessment

Wild

• Wild Level: Low
• Number of Infections: 1000+
• Number of Sites: 0 - 2
• Geographical Distribution: Low
• Threat Containment: Easy
• Removal: Easy

Damage

• Damage Level: Low
• Modifies Files: Infects multimedia files.

Distribution

• Distribution Level: Low
• Target of Infection: Multimedia files.