Malware Trojan.Win32.Oficla.cxf

Posted: August 29, 2012 in Encyclopedia viruses
Tags:

Malware Trojan.Win32.Oficla.cxf – Trojan has a destructive effect on the user’s computer.

Technical details

Trojan has a destructive effect on the user’s computer. The program itself is a Windows (PE EXE-file). Has a size of 22528 bytes. Written in C + +.

Destructive activity

After starting the Trojan decrypts and extracts from his body in the temporary directory of the current user file:

% Temp% \ . tmp

Where – random set of numbers and letters of the alphabet.

This file is 20480 bytes and is detected by Kaspersky Antivirus as Trojan.Win32.Oficla.dxy.

The Trojan then loaded into the address space the extracted file and launches it contains malicious code.

Removal

If your computer was not protected by Antivirus and is infected with this malware, then delete the following steps:

1. Delete the original Trojan file (the location of the victim will depend on how the program originally penetrated the victim machine).

2. Delete files:

% Temp% \ . tmp

where – random set of numbers and letters of the alphabet.

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s