Discovered: August 27, 2004
Updated: February 13, 2007 12:26:54 PM
Type: Trojan Horse
Systems Affected: Windows 2000, Windows 95, Windows 98, Windows Me, Windows NT, Windows Server 2003, Windows XP
Downloader.Ject.C is a variant of Download.Ject that attempts to download and execute files by exploiting two vulnerabilities in Internet Explorer (described in
Microsoft Security Bulletin MS04-013).
The Trojan is triggered by opening an email that contains the exploit HTML code.
Note: Virus definitions dated June 7th, 2006 or earlier may detect this threat as Download.Ject.C.
On August 27, 2004 users reported seeing numerous emails which appear to have served as the initial seeding of this Trojan. The emails had the following characteristics:
Subject:
Attachment:
The message body of the email contained the code which exploited the previously referenced Internet Explorer vulnerabilities.
Protection
-
Initial Rapid Release version August 28, 2004
-
Latest Rapid Release version August 20, 2008 revision 017
-
Initial Daily Certified version August 28, 2004 revision 036
-
Latest Daily Certified version August 20, 2008 revision 016
-
Initial Weekly Certified release date August 31, 2004
Click for a more detailed description of Rapid Release and Daily Certified virus definitions.
Threat Assessment
Wild
-
Wild Level: Low
-
Number of Infections: 0 - 49
-
Number of Sites: More than 10
-
Geographical Distribution: Low
-
Threat Containment: Easy
-
Removal: Moderate
Damage
Distribution
Writeup By: Hyun Choi
