-
Discovered:
- August 2, 2007
-
Updated:
- August 2, 2007 12:27:20 PM
-
Also Known As:
- TROJ_TARODROP.Q [Trend]
-
Type:
- Trojan
-
Infection Length:
- 61,440 bytes
-
Systems Affected:
- Windows 2000, Windows 98, Windows Me, Windows NT, Windows Server 2003, Windows XP
Trojan.Tarodrop.D is a Trojan horse that that attempts to exploit the JustSystem Ichitaro Unspecified Code Execution vulnerability (BID 25187) in order to steal sensitive information from the compromised computer.
For more information on this vulnerability, see the following entry on the Security Response Weblog:
Unknown Exploit Compromises IchitaroAntivirus Protection Dates
-
Initial Rapid Release version August 2, 2007 revision 008
-
Latest Rapid Release version September 28, 2010 revision 054
-
Initial Daily Certified version August 2, 2007 revision 017
-
Latest Daily Certified version September 28, 2010 revision 036
-
Initial Weekly Certified release date August 8, 2007
Click for a more detailed description of Rapid Release and Daily Certified virus definitions.
Threat Assessment
Wild
-
Wild Level: Low
-
Number of Infections: 0 - 49
-
Number of Sites: 0 - 2
-
Geographical Distribution: Low
-
Threat Containment: Easy
-
Removal: Easy
Damage
-
Damage Level: Medium
-
Payload: Uses a vulnerability to drop more threats on to the compromised computer.
Writeup By: Nicolas Falliere
