Products
Applications
Support
Company
How To Buy
Skip to main content (Press Enter).
Sign in
Skip auxiliary navigation (Press Enter).
Register
Skip main navigation (Press Enter).
Toggle navigation
Search Options
Home
My Communities
Communities
All Communities
Enterprise Software
Mainframe Software
Symantec Enterprise
Blogs
All Blogs
Enterprise Software
Mainframe Software
Symantec Enterprise
Events
All Events
Enterprise Software
Mainframe Software
Symantec Enterprise
VMware
Water Cooler
Groups
Enterprise Software
Mainframe Software
Symantec Enterprise
Members
Endpoint Protection
View Only
Community Home
Threads
Library
Events
Members
Back to discussions
Expand all
|
Collapse all
sort by most recent
sort by thread
Torpig
Jump to
Best Answer
ℬrίαη
Dec 17, 2009 09:25 AM
Will this be detected by Symantec? I know it attempts to make itself undetectable and was curious
Rafeeq
Dec 17, 2009 09:50 AM
Best Answer
Symantec will detect this http://www.symantec.com/security_response/writeup.jsp?docid=2005-112315-0608-99 ...
1.
Torpig
0
Recommend
ℬrίαη
Posted Dec 17, 2009 09:25 AM
Reply
Reply Privately
Options Dropdown
Will this be detected by Symantec? I know it attempts to make itself undetectable and was curious
2.
RE: Torpig
Best Answer
0
Recommend
Rafeeq
Posted Dec 17, 2009 09:50 AM
Reply
Reply Privately
Options Dropdown
Symantec will detect this
http://www.symantec.com/security_response/writeup.jsp?docid=2005-112315-0608-99
Trojan.Anserin (a.k.a. Sinowal, Torpig), is now reallyobvious. We have seen computers infected by Mebroot downloading someDLL modules that are injected by the rootkit into other processes, suchas services.exe and winlogon.exe. The injected DLL then downloads anadditional configuration file with information about targeted bank Websites. Communications with remote servers and encryption are exactlythe same as those seen in Trojan.Anserin
https://www-secure.symantec.com/connect/blogs/flow-mbr-rootkit-trojan-resumes
×
New Best Answer
This thread already has a best answer. Would you like to mark this message as the new best answer?
Copyright 2019. All rights reserved.
Powered by Higher Logic