Dear ____________,
We have analyzed your submission. The following is a report of our
findings for each file you have submitted:
filename: uimgr9021013579187.exe
machine: Machine
result: This file is detected as Packed.Generic.202.
Customer notes:
Vundo
Developer notes:
uimgr9021013579187.exe applies to the 20 current Bloodhound detections in the engine
Some or all of the files have been detected as ‘security risks’. For Symantec products that support security risks, the currently published LiveUpdate definitions (or attached definition file) are capable of detecting these threats. For more information on security risks, please visit http://securityresponse.symantec.com/avcenter/security_risks/index.html
- Does NAV09 detect "Security Risks"?
- Scanning the file using the latest LiveUpdate definitions results in nothing.
- Execution of the file results in it being quarientined and an notification about an HTTP Vundo Attack.
#10074910
VirusTotal analysis:
http://www.virustotal.com/analisis/61155e35d134d73afed2d483cda52a88
VirusTotal analysis of the executed file which created the above file.
http://www.virustotal.com/analisis/0c67556a9c6f6d07446a84b4e8293571
ThreatExpert Analysis:
http://www.threatexpert.com/report.aspx?md5=749776e6ba960740a6692c2e73a01458
And oh, this is my thrid time viewing this message; the counter seems to be stuck at 0 =\