Trojan.Js.Win32.Cromex.a
Posted: May 30, 2012
Threat Metric
The following fields listed on the Threat Meter containing a specific value, are explained in detail below:
Threat Level: The threat level scale goes from 1 to 10 where 10 is the highest level of severity and 1 is the lowest level of severity. Each specific level is relative to the threat's consistent assessed behaviors collected from SpyHunter's risk assessment model.
Detection Count: The collective number of confirmed and suspected cases of a particular malware threat. The detection count is calculated from infected PCs retrieved from diagnostic and scan log reports generated by SpyHunter.
Volume Count: Similar to the detection count, the Volume Count is specifically based on the number of confirmed and suspected threats infecting systems on a daily basis. High volume counts usually represent a popular threat but may or may not have infected a large number of systems. High detection count threats could lay dormant and have a low volume count. Criteria for Volume Count is relative to a daily detection count.
Trend Path: The Trend Path, utilizing an up arrow, down arrow or equal symbol, represents the level of recent movement of a particular threat. Up arrows represent an increase, down arrows represent a decline and the equal symbol represent no change to a threat's recent movement.
% Impact (Last 7 Days): This demonstrates a 7-day period change in the frequency of a malware threat infecting PCs. The percentage impact correlates directly to the current Trend Path to determine a rise or decline in the percentage.
| Threat Level: | 9/10 |
|---|---|
| Infected PCs: | 30 |
| First Seen: | May 30, 2012 |
|---|---|
| Last Seen: | May 24, 2024 |
| OS(es) Affected: | Windows |
Trojan.Win32.Cromex.a is a spyware program that does its best to steal passwords and login names from gaming and gambling-related websites. In an unusual example of multiple layers of deception, Trojan.Win32.Cromex.a also disguises its installation file twice-over: first, as a fake key generator for Steam games, and secondly as the WebRep plugin for the Chrome browser. SpywareRemove.com malware researchers have also found that new versions of Trojan.Win32.Cromex.a are capable of promoting themselves by automatically generating 'like' votes for YouTube videos that promote Trojan.Win32.Cromex.a's fake keygen application. Since key generators are, themselves, completely illegal applications that are often used to distribute PC threats like Trojan.Win32.Cromex.a, it's recommended that you avoid them in general, as well as scan your computer after any potential exposure to a Trojan.Win32.Cromex.a-infected application.
Why Greed for Gaming Equates to a Savaging by Trojan.Win32.Cromex.a
Trojan.Win32.Cromex.a makes a point on profiting from humanity's effectively infinite craving for entertainment products by promoting itself as a Steam keygen or key generator. Since a game application's key is the only thing that's required to prove ownership of a Steam game and thus add its entire functionality to your online library, the potential in such an application is obvious – but, of course, the YouTube videos that promote this fake keygen are just another way for your PC to get infected. At the time of this writing, SpywareRemove.com malware researchers have found that YouTube hasn't yet taken down the relevant YouTube videos, which enjoy artificially-bolstered 'like' ratings due to fake clicks that are generated by the latest version of Trojan.Win32.Cromex.a.
Following any of the links that are provided in these YouTube movies will cause you to download Trojan.Win32.Cromex.a, which then proceeds to install other malicious components in the form of a fake Avast-brand WebRep toolbar. The additional components, which SpywareRemove.com malware analysts have identified as JavaScript files, may be labeled Trojan.Js.Win32.Cromex.a by relevant anti-malware products. Since the real WebRep plugin is a completely legitimate browser add-on, victims may be tempted to think that there's nothing wrong – even if they didn't get the key generator that they were hoping to find.
Trojan.Win32.Cromex.a: Turning Your Dreams of New Gaming Horizons into Attacks on the Old Ones
Trojan.Win32.Cromex.a is also an example of cookie-based exploitation, since Trojan.Win32.Cromex.a uses cookie files as a method of storing and transferring personal information from your PC into criminal hands. After its installation, Trojan.Win32.Cromex.a monitors browser activity as Trojan.Win32.Cromex.a relates to text strings for Google, Steam, Minecraft, Gameforge, Windows Live and similar websites for gaming, social networking and online gambling. SpywareRemove.com malware researchers particularly warn against Trojan.Win32.Cromex.a's attempts to steal information that's submitted through browser-based forms, including logins and passwords.
However, since Trojan.Win32.Cromex.a can receive updates from theonlyone[dot]goodluckwith [dot]us/request[dot]php, Trojan.Win32.Cromex.a may be upgraded to target different websites in the future. As a general precaution, SpywareRemove.com malware researchers recommend that you remove Trojan.Win32.Cromex.a as soon as you can acquire anti-malware software to guarantee Trojan.Win32.Cromex.a's complete deletion and change all potentially-compromised passwords immediately afterward.
Leave a Reply
Please note that we are not able to assist with billing and support issues regarding SpyHunter or other products. If you're having issues with SpyHunter, please get in touch with SpyHunter customer support through your SpyHunter . If you have SpyHunter billing questions, we recommend you check the Billing FAQ. For general suggestions or feedback, contact us.