Technorati
Digg
Delicious
Reddit
StumbleUpon
Facebook
Yahoo
Twitter
Faves
Newsvine
- Discovered:
- January 27, 2012
- Updated:
- February 7, 2012 3:16:43 PM
- Type:
- Trojan
- Infection Length:
- 73,728 bytes
- Systems Affected:
- Windows 98, Windows 95, Windows XP, Windows Me, Windows Vista, Windows NT, Windows Server 2003, Windows 2000
- CVE References:
- CVE-2012-0003
Downloader.Darkmegi is a Trojan horse that downloads files on to the compromised computer.
This Trojan may arrive on the compromised computer as a result of the following vulnerability:
Microsoft Windows Media Player 'winmm.dll' MIDI File Parsing Remote Buffer Overflow Vulnerability (BID 51292)
This Trojan may arrive on the compromised computer as a result of the following vulnerability:
Microsoft Windows Media Player 'winmm.dll' MIDI File Parsing Remote Buffer Overflow Vulnerability (BID 51292)
Antivirus Protection Dates
- Initial Rapid Release version January 27, 2012 revision 002
- Latest Rapid Release version January 27, 2012 revision 017
- Initial Daily Certified version January 27, 2012 revision 001
- Latest Daily Certified version January 27, 2012 revision 019
- Initial Weekly Certified release date February 1, 2012
Click here for a more detailed description of Rapid Release and Daily Certified virus definitions.
Threat Assessment
Wild
- Wild Level: Low
- Number of Infections: 0 - 49
- Number of Sites: 0 - 2
- Geographical Distribution: Low
- Threat Containment: Easy
- Removal: Easy
Damage
- Damage Level: Medium
- Payload: Downloads files on to the computer.
Distribution
- Distribution Level: Low
Writeup By: Hiroshi Shinotsuka
