|
|
|  |
|
|
|
|
F-Secure Malware Information Pages: Trojan-PSW:W32/OnLineGames.SZJ
|
|
|
| Radar |
 |
|
|
|
Summary
|
| Trojan-PSW:W32/OnLineGames.SZJ is a DLL component whose function is to steal sensitive account information. |
|
|
|
Detailed Description
|
Trojan-PSW:W32/OnLineGames.SZJ is registered by its main executable into the Windows Explorer process.
Once this malware is successfully registered it will retrieve sensitive information by reading the process memory of the following game executables:
- cabalmain.exe
- qqgame.exe
- GameClient.exe
- LaTaleClient.exe
OnLineGames.SZJ will then attempt steal the following information:
- cash
- gold_coin
- Group
- level
- login credentials
- name
- server
- silver_coin
This trojan-password stealer also queries the process memory to terminate Kingsoft Antivirus. |
|
|
|
F-Secure Corporation |
|
|
|
|
|
Last Modified: April 29, 2008
|
|
|
|
|
