1. /
  2. Security Response/
  3. Trojan.Tarodrop.D

Trojan.Tarodrop.D

Risk Level 1: Very Low

Discovered:
August 2, 2007
Updated:
August 2, 2007 12:27:20 PM
Also Known As:
TROJ_TARODROP.Q [Trend]
Type:
Trojan
Infection Length:
61,440 bytes
Systems Affected:
Windows 2000, Windows 98, Windows Me, Windows NT, Windows Server 2003, Windows XP
Trojan.Tarodrop.D is a Trojan horse that that attempts to exploit the JustSystem Ichitaro Unspecified Code Execution vulnerability (BID 25187) in order to steal sensitive information from the compromised computer.

For more information on this vulnerability, see the following entry on the Security Response Weblog:
Unknown Exploit Compromises Ichitaro

Antivirus Protection Dates

  • Initial Rapid Release version August 2, 2007 revision 008
  • Latest Rapid Release version September 28, 2010 revision 054
  • Initial Daily Certified version August 2, 2007 revision 017
  • Latest Daily Certified version September 28, 2010 revision 036
  • Initial Weekly Certified release date August 8, 2007
Click here for a more detailed description of Rapid Release and Daily Certified virus definitions.

Threat Assessment

Wild

  • Wild Level: Low
  • Number of Infections: 0 - 49
  • Number of Sites: 0 - 2
  • Geographical Distribution: Low
  • Threat Containment: Easy
  • Removal: Easy

Damage

  • Damage Level: Medium
  • Payload: Uses a vulnerability to drop more threats on to the compromised computer.

Distribution

  • Distribution Level: Low
Writeup By: Nicolas Falliere

Search Threats

Search by name
Example: W32.Beagle.AG@mm
STAR Antimalware Protection Technologies
Internet Security Threat Report
Symantec DeepSight Screensaver