Cloud Antivirus > Surveillance de l’activité > Poison.AK

Détails du virusPoison.AK

Tous les détails, la description et les effets de Poison.AK

 CLOUD ANTIVIRUS - Share/Bookmark
Noms courants : Poison.AK
Noms techniques :
Alias : Backdoor.Win32.Poison.bfjd,
   
Type : BACKDOOR
Taille : 146621 Bytes
   

DETECTIONS
Nombre de détections :
Date de première détection : February 16, 2010 at 12:38 PM
Premier pays où il est apparu :
Dernier pays où il est apparu :
   

Brief Description

Poison.AK is a backdoor that allows hackers to gain remote access to the affected computer in order to carry out actions that compromise user confidentiality and impede the tasks performed on the computer.

 

It uses several methods in order to avoid detection by antivirus companies:

  • It terminates its own execution if it detects that it is being executed in a virtual machine environment, such as VMWare or VirtualPC.

 

Poison.AK uses the following propagation or distribution methods:

  • Exploiting vulnerabilities with the intervention of the user: exploiting vulnerabilities in file formats or applications. To exploit them successfully it needs the intervention of the user: opening files, viewing malicious web pages, reading emails, etc.
  • Via Internet, exploiting remote vulnerabilities: attacking random IP addresses, in which it tries to insert a copy of itself by exploiting one or more vulnerabilities.

 

EFFECTS

Poison.AK allows hackers to gain remote access to the affected computer in order to carry out actions that compromise user confidentiality and impede the tasks performed on the computer.

 

It uses the following techniques to impede detection by antivirus companies:
  • It terminates its own execution if it detects that it is being executed in a virtual machine environment, such as VMWare or VirtualPC.

 

http://www.pandasecurity.com/homeusers/security-info/about-malware/encyclopedia/overview.aspx?idvirus=Plus d’informations sur virus Poison.AK dans l’Encyclopédie

Atras Précédent