Win32/T8000 [Threat Name] go to Threat

Win32/T8000.A [Threat Variant Name]

Category trojan
Size 19968 B
Detection created Jan 01, 2018
Detection database version 16666
Short description

Win32/T8000.A is a trojan which tries to execute other malicious files.

Installation

The trojan does not create any copies of itself.


The trojan is probably a part of other malware.


The trojan may create the following files:

  • %temp%\­temp%variable1%
  • %temp%\­____%variable2%

The trojan may delete the following files:

  • %temp%\­temp%variable1%
  • %temp%\­____%variable2%

A string with variable content is used instead of %variable1-2% .

Other information

The trojan needs the following files to run:

  • %originalmalwarefilepath%0.dat

The file contains encrypted executable.


The file is then decrypted and executed.


The trojan uses one of the following encryption algorithms:

  • RC4

Please enable Javascript to ensure correct displaying of this content and refresh this page.