-
Discovered:
- August 17, 2007
-
Updated:
- August 18, 2007 6:14:09 AM
-
Also Known As:
- TROJ_LZDROPPER.A [Trend]
-
Type:
- Trojan
-
Infection Length:
- 390,605 bytes
-
Systems Affected:
- Windows 98, Windows 95, Windows XP, Windows Me, Windows Vista, Windows NT, Windows Server 2003, Windows 2000
Trojan.Lazdropper is a specially crafted .tgz file(TAR file compressed by gzip) that drops malicious files by exploiting the Lhaz Unspecified Remote Code Execution Vulnerability (
BID 25351).
Antivirus Protection Dates
-
Initial Rapid Release version August 17, 2007 revision 040
-
Latest Rapid Release version August 20, 2008 revision 017
-
Initial Daily Certified version August 18, 2007 revision 007
-
Latest Daily Certified version August 20, 2008 revision 016
-
Initial Weekly Certified release date August 22, 2007
Click for a more detailed description of Rapid Release and Daily Certified virus definitions.
Threat Assessment
Wild
-
Wild Level: Low
-
Number of Infections: 0 - 49
-
Number of Sites: 0 - 2
-
Geographical Distribution: Low
-
Threat Containment: Easy
-
Removal: Easy
Damage
-
Damage Level: Low
-
Payload: drops another malware onto the compromised computer.
-
Degrades Performance: Dropped malware opens a back door in order to cummunicate with the attacker, which may degrade network performance.
Writeup By: Chen Yu
