DrawDib.J belongs to the category of Potentially Unwanted Programs, also known as PUPs.
PUPs are programs that, due to their features or means of distribution, can affect users' consent, awareness or control over operations like:
- Modifications carried out on the computer.
- Behavior of the program.
- Processing of personal data.
The evaluation criteria of PUPs are based on the proposals suggested by the Anti-Spyware Coalition, organization of which Panda Security is a member.
DrawDib.J is designed to affect one or more specific companies.
It captures certain information entered or saved by the user, with the corresponding threat to privacy:
It sends the gathered information to a remote user by any available means: email, FTP, etc.
It affects productivity, preventing tasks from being carried out:
- In the affected computer:
it converts the computer into a platform for taking malicious action surreptitiously: spam sending, launch of Denial of Service attacks, malware distribution, etc.
It uses several methods in order to avoid detection by antivirus companies:
- It terminates its own execution if it detects that a debugging program is active.
DrawDib.J does not spread automatically using its own means. It needs an attacking user's intervention in order to reach the affected computer. The means of transmission used include, among others, floppy disks, CD-ROMs, email messages with attached files, Internet downloads, FTP, IRC channels, peer-to-peer (P2P) file sharing networks, etc.