Troj/Feebs-CA

Category: Viruses and Spyware Protection available since:02 Jan 2008 20:31:40 (GMT)
Type: Trojan Last Updated:02 Jan 2008 20:31:40 (GMT)
Prevalence: No Reports

Download Download our free Virus Removal Tool - Find and remove threats your antivirus missed

Troj/Feebs-CA is a Trojan for the Windows platform.

Troj/Feebs-CA includes functionality to stealth itself.

Troj/Feebs-CA creates the following files:
<System>\ms<two random letters>32.dll
<System>\ms<two random letters>.exe

Troj/Feebs-CA creates the following registry entries:
HKLM\Software\Microsoft\MSAM
HKCR\CLSID\<random class id>
HKLM\Software\Microsoft\Active Setup\Installed Components\<random class id>

These registry entries are created in HKCU if HKLM is not writable.

Troj/Feebs-CA payload performs the following malicious tasks:
- scans the network connection for user ids and passwords
- retrieves contacts from address books
- downloads and executes other malicious files
- sends out spam
- uploads files from the local hard drive to a remote server
- records keystrokes
- captures contents of windows for financial and shopping web sites

Troj/Feebs-CA also interferes with virus scanning and firewall software.

download Try Sophos products for free
Download now

© 1997 - 2012 Sophos Ltd. All rights reserved. Legal Privacy