Threat Description

Trojan-Dropper:W32/Peed.gen!A

Details

Aliases: Trojan-Dropper:W32/Peed.gen!A
Category: Malware
Type: Trojan-Dropper
Platform: W32

Summary


A trojan that contains one or more malicious programs, which it will secretly install and execute.



Removal


Automatic action

Once detected, the F-Secure security product will automatically disinfect the suspect file by either deleting it or renaming it.

More

Detailed instructions for F-Secure security products are available in the documentation found in the Downloads section of our Home - Global site.

You may also refer to the Knowledge Base on the F-Secure Community site for further assistance.



Technical Details


This Generic Detection identifies malicious files that create a file directory under the temporary folder:

  • %temp%\E_4 (or %temp%\E_N4)

The newly created folder is used to store the following files, which may be dropped by various malware:

  • %temp%\E_4\krnln.fnr
  • %temp%\E_4\dp1.fne

The dropped files may be loaded in other processes to perform malicious activities.

Notes

Some variants may drop an executable files with random name inside a new created folder:

  • %windir%\system32\[folder with random names]

Some variants from this family are observed to have downloading capabilities.

About Generic Detections

Unlike signature or single-file detections, a Generic Detection does not identify a unique or individual malicious program. Instead, a Generic Detection looks for broadly applicable code or behavior characteristics that indicate a file as potentially malicious, so that a single Generic Detection can efficiently identify dozens, or even hundreds of malware

For more information about Generic Detections, please see Generic Detection description.






SUBMIT A SAMPLE

Suspect a file or URL was wrongly detected? Submit a sample to our Labs for analysis

Submit Now

Give And Get Advice

Give advice. Get advice. Share the knowledge on our free discussion forum.

Learn More