Home Malware Programs Trojans Trojan.Win32.Scar.azjo

Trojan.Win32.Scar.azjo

Posted: January 22, 2010

Trojan.Win32.Scar.azjo is a malicious Trojan horse or bot. Trojan.Win32.Scar.azjo may serve as a security risk to a compromised computer system and/or its network environment. Trojan.Win32.Scar.azjo may look like an innocent computer program that carries out legitimate and useful functions, but it actually conducts damaging and illegal functions that include stealing stored data or enabling a hacker to obtain access to the system without authorization. Trojan.Win32.Scar.azjo generally does not replicate itself from one computer to another for spreading across a wide range but it can be obtained via the Internet.

File System Modifications

  • The following files were created in the system:
    # File Name
    1 %System%\dllcache\smdata32\Temporary Internet Files\empresa02\flash.js
    2 %System%\dllcache\smdata32\Temporary Internet Files\empresa03\flash.js
    3 %System%\dllcache\smdata32\Temporary Internet Files\empresa05\flash.js
    4 %System%\dllcache\smdata32\Temporary Internet Files\empresa07\flash.js
    5 %System%\dllcache\smdata32\Temporary Internet Files\empresa08\flash.js
    6 %System%\dllcache\smdata32\Temporary Internet Files\empresa09\flash.js
    7 %System%\dllcache\smdata32\Temporary Internet Files\empresa10\flash.js
    8 %System%\dllcache\smdata32\Temporary Internet Files\empresa11\flash.js
    9 %System%\dllcache\smdata32\Temporary Internet Files\empresa12\flash.js
    10 %System%\dllcache\smdata32\Temporary Internet Files\empresa13\flash.js
    11 %System%\dllcache\smdata32\Temporary Internet Files\empresa13\Scripts\AC_RunActiveContent.js
    12 %System%\dllcache\smdata32\Temporary Internet Files\empresa19\19a.swf
    13 %System%\dllcache\smdata32\Temporary Internet Files\empresa19\flash.js
    14 %System%\dllcache\smdata32\Temporary Internet Files\empresa19\Scripts\AC_RunActiveContent.j

Registry Modifications

  • The following newly produced Registry Values are:
    HKEY..\..\..\..{Subkeys}[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Download][HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]
Loading...