F-Secure
Tools
Trojan-Downloader.SWF.Gida.A
| Name : | Trojan-Downloader.SWF.Gida.A |
| Category: | Malware |
| Type: | Trojan-Downloader |
| Platform: | SWF |
Summary
Trojan-Downloader.SWF.Gida.A is detection of Adobe Flash files that have seen served over Hypertext Transfer Protocol (HTTP) and linked from advertisement sites.
It injects additional HTML content to the viewed webpage which then serves malicious content.
It injects additional HTML content to the viewed webpage which then serves malicious content.
Additional Details
The trojan contains an Adobe Flash ActiveScript which injects JavaScript code into the viewed webpage. Malicious JavaScript adds HTML to the currently viewed webpage.
Results include Drive-by downloads, Pop-up ads, and JavaScript alerts.
Several of the advertisements have been aimed at promoting rogue antispyware applications.
While Adobe Flash is a multi-platform application, the end infection is directed towards the Win32 (Windows) platform.
Adobe Flash is a common media container for banner advertisements. The trojan have been observed on several large News websites where the Flash have been shown from advertisement networks. The News sites have reacted quickly to remove such malicious Flash files.
Results include Drive-by downloads, Pop-up ads, and JavaScript alerts.
Several of the advertisements have been aimed at promoting rogue antispyware applications.
While Adobe Flash is a multi-platform application, the end infection is directed towards the Win32 (Windows) platform.
Adobe Flash is a common media container for banner advertisements. The trojan have been observed on several large News websites where the Flash have been shown from advertisement networks. The News sites have reacted quickly to remove such malicious Flash files.
Detection
F-Secure Anti-Virus detects this malware with the following updates:
[FSAV_Database_Version]
Version = 2007-12-13_09.