sobota 25. února 2012

VirTool:Win32/CeeInject.B


Encyclopedia entry
Updated: Apr 17, 2011  |  Published: May 11, 2010

Aliases
Not available

Alert Level (?)
Severe

Antimalware protection details
Microsoft recommends that you download the latest definitions to get protected.
Detection last updated:
Definition: 1.121.359.0
Released: Feb 24, 2012
Detection initially created:
Definition: 1.59.767.0
Released: Jun 03, 2009


 

Summary

VirTool:Win32/CeeInject.B is a generic detection for malicious files that are obfuscated using particular techniques to protect them from detection or analysis.


 

Symptoms

VirTool:Win32/CeeInject.B is a generic detection for certain forms of obfuscated malware. Malicious programs detected as VirTool:Win32/CeeInject.B can have virtually any purpose, as this technique is utilized by many different malware families in the wild in order to protect them from detection or analysis.
 
There are no common symptoms associated with this threat. Alert notifications from installed antivirus software may be the only symptom(s).


 

Technical Information (Analysis)

VirTool:Win32/CeeInject.B is a generic detection for malicious files that are obfuscated using particular techniques to protect them from detection or analysis.
 
A malicious file is generally encrypted/and or compressed and stored inside another program, which decodes the malicious file and loads it. The malicious program may be injected into a clean process or loaded in a new process of its own. Unlike a “dropper”, the malicious executable is never written to disk as a separate file.
 
Malicious programs detected as VirTool:Win32/CeeInject.B can have virtually any purpose, as this technique is utilized by many different malware families in the wild in order to protect them from detection or analysis.

Žádné komentáře:

Okomentovat

Poznámka: Komentáře mohou přidávat pouze členové tohoto blogu.