Welcome to the Virus Encyclopedia of Panda Security.
|Alias:||TR/Dldr.Small.23, Trojan.Downloader.Small-748, Trojan-Downloader.Win32.Small.ABD, W32/Suspicious_M.gen, Trojan.Downloader.Small.23|
It downloads the Trojan Agent.AII to the affected computer and disables several security tools. It has been mass-mailed in an email message that passes itself off as a Microsoft message, with an attached file called MS05-039.EXE.
|First detected on:||Aug. 24, 2005|
|Detection updated on:||Aug. 24, 2005|
|Yes, using TruPrevent Technologies
Downloader.EJD is a Trojan that downloads other Trojan to the affected computer from a certain website. That Trojan is detected as Agent.AII.
In turn, Agent.AII downloads and installs other malware, which logs the keystrokes typed by the user while accessing several web pages belonging to banking entities.
Downloader.EJD modifies the settings of security software, sending Windows messages that simulate user interaction in order to disable antivirus programs, firewalls or even the Security Center in Windows XP.
Downloader.EJD has been mass-mailed in an email message that passes itself off as a Microsoft message, with the subject What You Need to Know About the Zotob.A Worm and the attached file MS05-039.EXE.
Downloader.EJD is difficult to recognize, as it does not display any messages or warnings that indicate it has reached the computer.