Troj/Hiddl-B

Aliases	Trojan-Downloader.Win32.Small.bta
Category	Viruses and Spyware
Type	Trojan
What to do	If you've received an alert for a virus or spyware, then follow the instructions for removing the threat.
Prevalence	low high

Summary


Affected operating systems	Windows
Included in our products from	December 2005 (4.00)
Protection available since	24 October 2005 13:03:37 (GMT)
Detected by	All Sophos products

Troj/Hiddl-B is a downloader Trojan for the Windows platform.

Troj/Hiddl-B will download and execute files from a predefined URL to <System>\SVSHOTC.EXE.

Troj/Hiddl-B attempts to copy itself to the Startup folder for all users as WIN32HOST.EXE in order to run everytime Windows is started.

Troj/Hiddl-B attempts to drop and run the file <System>\iedld32.dll, also detected as Troj/Hiddl-B.

Troj/Hiddl-B attempts to stealth itself, hiding processes and files from Windows applications.

Get reports about the latest virus and spyware threats delivered to your computer