Troj/Mdrop-BSQ is a Trojan for the Windows platform which installs other malware.
When first run, Troj/Mdrop-BSQ copies itself to <Temp>\tru<random character>.tmp and creates the following files:
<Temp>\rvruytx2.dll
<Root>\autorun.inf
<Root>\g83816.com
<System>\amvo.exe
<System>\amvo0.dll
The file autorun.inf is detected as Mal/AutoInf-A and the files g83816.com, amvo.exe and amvo0.dll are detected as Mal/EncPk-DH. The file rvruytx2.dll is detected as Mal/EncPk-DU.
Troj/Mdrop-BSQ causes the existing <System>\drivers\vga.sys to be overwritten with a rootkit Trojan, Troj/Rootkit-CO.
A registry entry is created to run amvo.exe on startup:
HKCU\Software\Microsoft\Windows\CurrentVersion\Run
amva
<System>\amvo.exe