Troj/Clagger-I is a Trojan for the Windows platform.
Troj/Clagger-I may be attached to spam messages claiming to be sent from paypal.com.
Troj/Clagger-I includes functionality to download, install and run new software.
When Troj/Clagger-I is installed the following files are created:
\1.bat
<Windows>\suhoy.exe
The file suhoy.exe is the downloaded file. The file 1.bat is used to delete Troj/Clagger-I.
The following registry entries is created, affecting internet security:
HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\
FiREWaLLpolicy\StAnDaRDPrOFiLe\AUtHorizedapplications\List
<pathname of the Trojan executable>
<pathname of the Trojan executable>:*:enabled:B