ThreatExpert's Statistics for New Malware.u [McAfee]:

New Malware.u [McAfee] is also known as:

Threat Alias	Number of Incidents
Mal/Packer [Sophos]	1,288
Packed.Generic.181 [Symantec]	1,158
Trojan.Generic [Ikarus]	613
MalwareScope.Worm.Viking.4 [Ikarus]	185
Mal/Behav-053 [Sophos]	134
Packed/NSPack [PC Tools]	125
Hacktool.Rootkit [Symantec]	106
Mal/EncPk-GX, Mal/Packer [Sophos]	93
Mal/Emogen-N, Mal/Heuri-E [Sophos]	86
Trojan-GameThief.Win32.OnLineGames.vcqj [Kaspersky Lab]	86
Backdoor.Win32.Hupigon [Ikarus]	84
Packed.Generic.93 [Symantec]	75
Downloader [Symantec]	67
Mal/Behav-009, Mal/Emogen-Y, Mal/Behav-053 [Sophos]	65
Win-Trojan/Xema.variant [AhnLab]	56
Suspicious.MH690 [Symantec]	49
Trojan.Win32.Agent.chwl [Kaspersky Lab]	49
Trojan Horse [Symantec]	41
Backdoor.Graybird [Symantec]	40
Dropper/Multi.184832 [AhnLab]	35
Cryp_Xed-3 [Trend Micro]	23
Generic.dx [McAfee]	22
Infostealer.Gampass [Symantec]	22
Backdoor.Trojan [Symantec]	20
Backdoor.Win32.GrayBird.EJ [Ikarus]	19
Trojan-Dropper.Delf [Ikarus]	19
Hacktool [Symantec]	18
Mal/Heuri-E, Mal/Emogen-N [Sophos]	18
TROJ_AGENT.YOW [Trend Micro]	18
TROJ_DELF.JKF [Trend Micro]	17
Trojan-Downloader.Win32.Delf.epw [Kaspersky Lab]	17
Mal/Packer, Mal/Delf-M, Mal/Behav-053 [Sophos]	16
Trojan-Downloader.Win32.Agent.ajw [Kaspersky Lab]	16
Trojan-GameThief.Win32.OnLineGames.tquc [Kaspersky Lab]	16
Trojan-Dropper.Agent [Ikarus]	15
TROJ_HORST.AY [Trend Micro]	14
Backdoor.Graybird [PC Tools]	13
Backdoor.Win32.HacDef.073.B [Ikarus]	13
Mal/TibsPk-A, Mal/Packer [Sophos]	13
Trojan.KillAV [Symantec]	13
Mal/Packer, Mal/Behav-024 [Sophos]	12
Mal_Banker [Trend Micro]	12
Suspicious.Graybird.1 [Symantec]	12
Trojan-Downloader.Win32.Agent.bhmm [Kaspersky Lab]	12
Win-Trojan/Agent.108032.KF [AhnLab]	12
Backdoor.Win32.Hupigon.gnzd [Kaspersky Lab]	10
TROJ_DELF.HCA [Trend Micro]	10
Exploit.Win32.MS08-067.cg [Kaspersky Lab]	9
Exploit:Win32/MS08067.gen!A [Microsoft]	9
Mal/Behav-024, Mal/Packer [Sophos]	9
Mal/EncPk-AP, Mal/Packer, Mal/Behav-009, Mal/Emogen-Y, Mal/Behav-053 [Sophos]	9
Mal/Packer, Mal/Emogen-H, Mal/Emogen-F [Sophos]	9
Trojan.Win32.LaSta [Ikarus]	9
Trojan-GameThief.Win32.OnLineGames.vabk [Kaspersky Lab]	9
Mal/Packer, Mal/Behav-204 [Sophos]	8
Trojan.Dropper [Symantec]	8
Trojan.Win32.Agent.alax [Kaspersky Lab]	8
Trojan:Win32/Meredrop [Microsoft]	8
Mal/Generic-A [Sophos]	7
Trojan-GameThief.Win32.OnLineGames.bkzf [Kaspersky Lab]	7
W32.Spybot.Worm [Symantec]	7
Bloodhound.Overpacked [Symantec]	6
TROJ_BANKER.MNJ [Trend Micro]	6
W32.Arpiframe [Symantec]	6
W32.Mikbaland [Symantec]	6
Win-Trojan/Agent.75764 [AhnLab]	6
Win-Trojan/Hacktool.42360 [AhnLab]	6
Backdoor.Formador [Symantec]	5
Backdoor.Win32.Ceckno [Ikarus]	5
TROJ_PEPATCH.AW [Trend Micro]	5
Backdoor.Bifrose [Symantec]	4
Backdoor.Win32.Hupigon.dexj [Kaspersky Lab]	4
Backdoor.Win32.Hupigon.jxw [Kaspersky Lab]	4
Backdoor.Win32.Hupigon.rf [Kaspersky Lab]	4
Backdoor:Win32/Hupigon.gen [Microsoft]	4
Backdoor:Win32/Hupigon.gen!E [Microsoft]	4
Exploit.MS08-67 [PC Tools]	4
Exploit.Win32.MS08-067 [Ikarus]	4
Mal/Behav-004, Mal/Packer [Sophos]	4
Mal/EncPk-F, Mal/Behav-053 [Sophos]	4
Mal/Packer, Mal/Banspy-F [Sophos]	4
Mal/Packer, Mal/Behav-058, Mal/EncPk-E [Sophos]	4
not-a-virus:NetTool.Win32.Agent.b [Kaspersky Lab]	4
PWS-Banker.dldr [McAfee]	4
TROJ_DLOADER.HAF [Trend Micro]	4
TROJ_PAKES.AWH [Trend Micro]	4
Trojan.Peacomm [Symantec]	4
Trojan.Popwin [Symantec]	4
Trojan.QQMess [Symantec]	4
Trojan.Win32.Agent.ahzz [Kaspersky Lab]	4
Trojan.Win32.AntiAV [Ikarus]	4
Trojan.Win32.Pakes.cux [Kaspersky Lab]	4
Trojan.Win32.VB.ncb [Kaspersky Lab]	4
Trojan-Banker.Win32.Banker.abqo [Kaspersky Lab]	4
Trojan-Downloader.Win32.Delf.jwf [Kaspersky Lab]	4
Trojan-GameThief.Win32.Lmir [Ikarus]	4
Trojan-GameThief.Win32.OnLineGames.smxe [Kaspersky Lab]	4
Trojan-GameThief.Win32.OnLineGames.thdj [Kaspersky Lab]	4
Trojan-GameThief.Win32.OnLineGames.tlbg [Kaspersky Lab]	4
Trojan-Spy.Win32.Delf.dta [Kaspersky Lab]	4

New Malware.u [McAfee] has the following possible countries of origin:

Origin		Number of Incidents
	China	1,693
	United Kingdom	578
	Brazil	90
	Russian Federation	26
	France	8
	Sweden	6
	Germany	4
	Saudi Arabia	2
	Belgium	1
	Hong Kong	1
	Israel	1
	Italy	1
	Republic of Korea	1
	Spain	1
	Taiwan	1

New Malware.u [McAfee] is known to be created as:

%CommonFavorites%\netservice.exe

%CommonPrograms%\startup\windows32.exe

%ProgramFiles%\bifrost-mojahed.exe

%ProgramFiles%\common files\cthelper.exe

%ProgramFiles%\common files\microsoft\cthelper.exe

%ProgramFiles%\conexant\dhcpost.exe

%ProgramFiles%\cybertv\cybertv.exe

%ProgramFiles%\eset\egui.exe

%ProgramFiles%\hgzserver\g_server2.03.exe

%ProgramFiles%\hgzserver\hacker.com.cn.exe

%ProgramFiles%\internet explorer\connection wizard\svchosi.exe

%ProgramFiles%\microsoft.net\conisc.exe

%ProgramFiles%\microsoft.net\lassce.exe

%ProgramFiles%\microsoft.net\smser.exe

%ProgramFiles%\microsoft.net\vstarct.exe

%ProgramFiles%\msn gaming zone\vstarcu.exe

%ProgramFiles%\netmeeting\dllstats.exe

%ProgramFiles%\netmeeting\netmeeting.exe

%ProgramFiles%\outlook express\ravsvrs.exe

%ProgramFiles%\windows media player\wmupdate.exe

%ProgramFiles%\windows nt\mscol.exe

%ProgramFiles%\windows nt\txlctafo.exe

%ProgramFiles%\windows nt\updatas.exe

%ProgramFiles%\windows nt\wordict.exe

%System%\_command.exe

%System%\111.exe

%System%\1sas.exe

%System%\51b294.exe

%System%\51b322.exe

%System%\51b380.exe

%System%\a275.exe

%System%\appplayer.exe

%System%\arps.com

%System%\b089.exe

%System%\c0n1me.exe

%System%\cnsjia.exe

%System%\cnsong.exe

%System%\crsss.exe

%System%\ctfmen.exe

%System%\cybertv.exe

%System%\data32.exe

%System%\dllcache\secure\allsetup.exe

%System%\dllcache\secure\raddrv.dll

%System%\dllcache\secure\rainstall.exe

%System%\dllcache\secure\rootkit.exe

%System%\dllcache\secure\scsetup.exe

%System%\dllcache\spoolsv.exe

%System%\drivers\iexplore.exe

%System%\drivers\messages.exe

%System%\epl0rer.exe

%System%\explorer.exe

%System%\face.exe

%System%\fomir.exe

%System%\framephotoeditor.exe

%System%\gamesetup.exe.exe

%System%\group.exe

%System%\iexplorer.exe

%System%\qq.exe

%System%\rbugki.exe

%System%\safetray.exe

%System%\scvhost.exe

%System%\sdgames.exe

%System%\server.exe

%System%\sevensowrdsvr.exe

%System%\shellext\rundll32.exe

%System%\shellext\svchs0t.exe

%System%\spool\drivers\bwproxyclient.exe

%System%\svch0st.exe

%System%\svchosts.exe

%System%\syssevensowrd.exe

%System%\tcpip.exe

%System%\temp1.exe

%System%\ts-es\smax4pnp.exe

%System%\updater.exe

%System%\vm_sti.exe

%System%\wauc11.exe

%System%\wauc1t.exe

%System%\waucl1.exe

%System%\winmodulos32.exe

%System%\wuauc1t.exe

%Temp%\004.exe

%Temp%\008.exe

%Temp%\090520-8-0.exe

%Temp%\090522-1-5.exe

%Temp%\0cd0a401.exe

%Temp%\3\090312-3-8.exe

%Temp%\4\090312-4-1.exe

%Temp%\5\090312-5-0.exe

%Temp%\6\090312-6-3.exe

%Temp%\6476728f.exe

%Temp%\8.exe

%Temp%\bifrost-mojahed.exe

%Temp%\game032.exe

%Temp%\proxycap.exe

%Temp%\qvod01.exe

%Temp%\qvod06.exe

%Temp%\qvod2.exe

%Temp%\rarsfx0\servyr.exe

%Temp%\setup_000024.exe

%Temp%\www.fdsjan.cn\max30.exe

Notes:

%CommonFavorites% is a variable that refers to the file system directory that serves as a common repository for all users' favorite items. A typical path is C:\Documents and Settings\All Users\Favorites (Windows NT/2000/XP).
%CommonPrograms% is a variable that refers to the file system directory that contains the directories for the common program groups that appear on the Start menu for all users. A typical path is C:\Documents and Settings\All Users\Start Menu\Programs (Windows NT/2000/XP).
%ProgramFiles% is a variable that refers to the Program Files folder. A typical path is C:\Program Files.
%System% is a variable that refers to the System folder. By default, this is C:\Windows\System (Windows 95/98/Me), C:\Winnt\System32 (Windows NT/2000), or C:\Windows\System32 (Windows XP).
%Temp% is a variable that refers to the temporary folder in the short path form. By default, this is C:\Documents and Settings\[UserName]\Local Settings\Temp\ (Windows NT/2000/XP).