1. /
  2. Security Response/
  3. Trojan.Mdropper.W


Risk Level 1: Very Low

January 17, 2007
January 19, 2007 12:43:17 PM
Also Known As:
Troj/Agent-EBG [Sophos]
Infection Length:
154,627 bytes (.doc file); 42,500 bytes (embedded .exe file); 17,920 bytes (.exe files)
Systems Affected:
Windows 98, Windows 95, Windows XP, Windows Me, Windows NT, Windows 2000
CVE References:
Trojan.Mdropper.W is a Trojan horse that uses the Microsoft Word 2000 Unspecified Code Execution Vulnerability (BID 22225) to drop additional malware on to the compromised computer, which is detected as Backdoor.Trojan (MCID 361).

Antivirus Protection Dates

  • Initial Rapid Release version January 18, 2007
  • Latest Rapid Release version February 2, 2012 revision 039
  • Initial Daily Certified version January 18, 2007
  • Latest Daily Certified version February 3, 2012 revision 003
  • Initial Weekly Certified release date January 24, 2007
Click here for a more detailed description of Rapid Release and Daily Certified virus definitions.

Threat Assessment


  • Wild Level: Low
  • Number of Infections: 0 - 49
  • Number of Sites: 0 - 2
  • Geographical Distribution: Low
  • Threat Containment: Easy
  • Removal: Easy


  • Damage Level: Low
  • Payload: Drops additional malware on the compromised computer.


  • Distribution Level: Low
  • Ports: TCP port 80
Note: On May 14, 2015, modifications will be made to the threat write-ups to streamline the content. The Threat Assessment section will no longer be published as this section is no longer relevant to today's threat landscape. The Risk Level will continue to be the main threat risk assessment indicator.
Writeup By: Jeong Mun

Search Threats

Search by name
Example: W32.Beagle.AG@mm
STAR Antimalware Protection Technologies
Internet Security Threat Report