F-Secure
Tools
Trojan-PSW:W32/OnLineGames.SZJ
| Name : | Trojan-PSW:W32/OnLineGames.SZJ |
| Size: | 23,552 bytes |
| Category: | Malware |
| Type: | Trojan-PSW |
| Platform: | W32 |
| Origin: | CHINA |
Summary
Trojan-PSW:W32/OnLineGames.SZJ is a DLL component whose function is to steal sensitive account information.
Additional Details
Trojan-PSW:W32/OnLineGames.SZJ is registered by its main executable into the Windows Explorer process.
Once this malware is successfully registered it will retrieve sensitive information by reading the process memory of the following game executables:
OnLineGames.SZJ will then attempt steal the following information:
This trojan-password stealer also queries the process memory to terminate Kingsoft Antivirus.
Once this malware is successfully registered it will retrieve sensitive information by reading the process memory of the following game executables:
• cabalmain.exe
• qqgame.exe
• GameClient.exe
• LaTaleClient.exe
OnLineGames.SZJ will then attempt steal the following information:
• cash
• gold_coin
• Group
• level
• login credentials
• name
• server
• silver_coin
This trojan-password stealer also queries the process memory to terminate Kingsoft Antivirus.