Threat Encyclopedia

Selected viruses, spyware, and other threats: sorted alphabetically

Win32/Injector.AOB

Aliases:Trojan-PSW.Win32.Agent.our (Kaspersky), PWS:Win32/Ldpinch.gen!D (Microsoft), Trojan.PSW.Agent.our (McAfee) 
Type of infiltration:Trojan  
Size:107008 B 
Affected platforms:Microsoft Windows 
Signature database version:4731 (20091231) 

Short description

Win32/Injector.AOB is a trojan that steals passwords and other sensitive information. The trojan can send the information to a remote machine.

Installation

The trojan does not create any copies of itself.

Information stealing

Win32/Injector.AOB is a trojan that steals passwords and other sensitive information.

The trojan collects information related to the following applications:
  • Bullet Proof FTP
  • BulletProof FTP Client
  • CuteFTP
  • CuteFTP 6 Home
  • CuteFTP 6 Professional
  • CuteFTP 7 Home
  • Bullet Proof FTP
  • BulletProof FTP Client
  • CuteFTP
  • CuteFTP 6 Home
  • CuteFTP 6 Professional
  • CuteFTP 7 Home
  • CuteFTP 7 Professional
  • CuteFTP Pro
  • FAR Manager
  • FileZilla
  • FileZilla Client
  • FlashFXP
  • FTP Commander
  • FTP Commander Deluxe
  • FTP Commander Pro
  • FTP Navigator
  • Internet Explorer 7
  • Mozilla Firefox
  • Opera
  • Opera 9 Beta
  • SmartFTP
  • Total Commander
  • TurboFTP
  • WS_FTP Professional
The trojan can send the information to a remote machine.

The trojan contains a list of (1) URLs. The HTTP protocol is used.

Other information

The trojan may create the following files:
  • SelfDel.bat