ThreatExpert's Statistics for Troj/Virtum-Gen [Sophos]:

Troj/Virtum-Gen [Sophos] is also known as:

Threat Alias	Number of Incidents
Trojan.Vundo [Symantec]	6,532
Vundo [McAfee]	3,556
Trojan.Win32.Monder [Ikarus]	3,129
Trojan.Win32.Monder.atxg [Kaspersky Lab]	2,652
Trojan.Virtumonde [PC Tools]	2,341
Trojan.Win32.Vundo [Ikarus]	1,631
TROJ_VUNDO.HGO [Trend Micro]	1,299
Vundo.gen.m [McAfee]	1,231
Trojan:Win32/Vundo.gen!R [Microsoft]	1,097
Generic PWS.ak [McAfee]	1,066
Win-Trojan/Vundo.48128.D [AhnLab]	1,020
Trojan.Win32.Monder.gen [Kaspersky Lab]	1,002
Trojan:Win32/Vundo.gen!H [Microsoft]	861
Packed.Generic.180 [Symantec]	829
Trojan.Vundo.B [Symantec]	802
Trojan Horse [Symantec]	761
Trojan:Win32/Vundo.gen!T [Microsoft]	747
Vundo.gen.c [McAfee]	730
Vundo.gen.g [McAfee]	730
Trojan:Win32/Vundo.gen!G [Microsoft]	671
Trojan:Win32/Vundo.gen!K [Microsoft]	650
Trojan:Win32/Vundo.gen!AS [Microsoft]	632
Adware.Vundo.Gen!Pac.18 [PC Tools]	625
Vundo.gen.ab [McAfee]	563
Vundo.gen.w [McAfee]	527
Trojan:Win32/Vundo.JD.dll [Microsoft]	493
PWS:Win32/Frethog.MN [Microsoft]	477
Packed.Generic.214 [Symantec]	450
Virus.Win32.Virtumonde [Ikarus]	442
Trojan.Win32.Monder.chol [Kaspersky Lab]	441
Infostealer.Gampass [Symantec]	437
Trojan:Win32/Vundo.gen!C [Microsoft]	432
W32.Gammima.AG [Symantec]	403
Trojan.Vundo [Ikarus]	390
Trojan:Win32/Vundo.gen!X [Microsoft]	373
Packed.Generic.217 [Symantec]	347
Trojan.Win32.Monderb.gen [Kaspersky Lab]	344
Packed.Win32.Krap.b [Kaspersky Lab]	343
Adware.Vundo.Gen!Pac.21 [PC Tools]	338
Vundo.gen.t [McAfee]	338
Trojan.Win32.Stuh [Ikarus]	333
Vundo.gen.aj [McAfee]	316
Suspicious.Vundo.2 [Symantec]	315
Trojan.Win32.Monder.bzdz [Kaspersky Lab]	294
Vundo.gen.ac [McAfee]	291
TROJ_VUNDO.BMF [Trend Micro]	287
PWS:Win32/Frethog.gen!B [Microsoft]	286
Trojan:Win32/Vundo.KC [Microsoft]	281
Trojan.Win32.Monderd.gen [Kaspersky Lab]	267
Trojan:Win32/Vundo.gen!AE [Microsoft]	262
Packed.Generic.190 [Symantec]	250
Packed/Upack [AhnLab]	244
Trojan.Win32.Monderb [Ikarus]	234
PWS:Win32/Frethog.D [Microsoft]	233
Vundo.gen.d [McAfee]	232
Trojan.Packed.NsAnti [Symantec]	227
Trojan.Win32.Monderc.gen [Kaspersky Lab]	227
Packed.Win32.Krap.p [Kaspersky Lab]	226
Trojan:Win32/Vundo [Microsoft]	226
Mal_Vundo-4 [Trend Micro]	224
Vundo.gen.bq [McAfee]	222
Trojan.Vundo!sd6 [PC Tools]	220
Trojan.Win32.FakeSmoke [Ikarus]	217
Trojan:Win32/Vundo.gen!AM [Microsoft]	204
Packed.Win32.Krap.q [Kaspersky Lab]	203
Trojan:Win32/Vundo.JC.dll [Microsoft]	200
Trojan:Win32/Hiloti.gen!A [Microsoft]	198
Worm:Win32/Vundo.B [Microsoft]	198
Trojan.Win32.Inject.ldi [Kaspersky Lab]	196
Packed.Win32.Krap [Ikarus]	188
Trojan.Awax [Symantec]	183
TrojanDownloader:Win32/Frethog.C [Microsoft]	183
Win-Trojan/Xema.variant [AhnLab]	172
Trojan:Win32/Vundo.IX [Microsoft]	168
Trojan-GameThief.Win32.Magania [Ikarus]	165
Trojan:Win32/Vundo.gen!BB [Microsoft]	158
Vundo.gen.ao [McAfee]	157
Trojan:Win32/Vundo.D [Microsoft]	153
Packed.Generic.202 [Symantec]	151
Trojan.Win32.Vundo.T [Ikarus]	151
Trojan-Downloader.Win32.Agent.bqxc [Kaspersky Lab]	146
Trojan-Downloader.Agent.BQXC [PC Tools]	144
Worm:Win32/Vundo.A [Microsoft]	144
Trojan.Win32.Inject [Ikarus]	142
Trojan:Win32/Vundo.BR [Microsoft]	141
Vundo.gen.ad [McAfee]	137
Trojan.Win32.Vundo.R [Ikarus]	135
Trojan:Win32/Vundo.AY [Microsoft]	134
Trojan:Win32/Vundo.gen!BC [Microsoft]	131
Trojan.Win32.Vundo.AY [Ikarus]	127
Vundo.gen.ap [McAfee]	126
Trojan-Downloader.Win32.Clopack.ae [Kaspersky Lab]	121
Trojan.Dropper [Symantec]	116
Suspicious.Vundo [Symantec]	111
Trojan.Win32.Monderd [Ikarus]	111
Generic Downloader.x!bo [McAfee]	110
Win-Trojan/Clopack.37376.B [AhnLab]	110
Trojan:Win32/Vundo.gen!AJ [Microsoft]	106
Trojan-Downloader.Win32.Clopack.in [Kaspersky Lab]	100
Mal/EncPk-IG, Troj/Virtum-Gen [Sophos]	99

Troj/Virtum-Gen [Sophos] has the following possible countries of origin:

Origin		Number of Incidents
	Germany	601
	Russian Federation	368
	United Kingdom	34
	Kyrgyzstan	15
	China	12
	Japan	11
	Taiwan	4
	Israel	1

Troj/Virtum-Gen [Sophos] is known to be created as:

%AppData%\macromedia\common\ff7100021.dll

%AppData%\microsoft\windows\lsass.exe

%FontsDir%\kb218234933.dll

%FontsDir%\kb51273134.dll

%FontsDir%\kb52220203.dll

%ProgramFiles%\common files\designer\bkloe.dll

%ProgramFiles%\internet explorer\signup\aviafx.dll

%ProgramFiles%\smart protector\uninstalls.exe

%System%\4tddfwq0.dll

%System%\4tddfwq1.dll

%System%\ahnfgss0.dll

%System%\ahnfgss1.dll

%System%\ahnfgss2.dll

%System%\amvo0.dll

%System%\amvo1.dll

%System%\amvo2.dll

%System%\asti1113.exe

%System%\avpo0.dll

%System%\avpo1.dll

%System%\awtqjgev.dll

%System%\awtqjiaq.dll

%System%\awtqnkh.dll

%System%\awtqnkhe.dll

%System%\awtqnomn.dll

%System%\awtqpnfy.dll

%System%\awtqqnec.dll

%System%\awtqqpqn.dll

%System%\awtqrslk.dll

%System%\awtroeev.dll

%System%\awtrphgy.dll

%System%\awtrpnl.dll

%System%\awtrrjii.dll

%System%\awtrrlbt.dll

%System%\awtrskee.dll

%System%\awtrskjc.dll

%System%\awtsjgds.dll

%System%\awtsjggd.dll

%System%\awtslcsq.dll

%System%\awtsppq.dll

%System%\awtss.dll

%System%\awtstndd.dll

%System%\awttqolj.dll

%System%\awttrrlk.dll

%System%\awttsrix.dll

%System%\awtttqkk.dll

%System%\awtttssq.dll

%System%\awturofu.dll

%System%\awturpfu.dll

%System%\awtusjyy.dll

%System%\awtuutmf.dll

%System%\bajiyise.dll

%System%\batimeyu.dll

%System%\bayunivu.dll

%System%\bedinuni.dll

%System%\bihelufe.dll

%System%\bonopefo.dll

%System%\botajida.dll

%System%\bowikiku.dll

%System%\bugagoku.dll

%System%\buhefoli.dll

%System%\byxndbyo.dll

%System%\byxndcuv.dll

%System%\byxndeef.dll

%System%\byxnebsr.dll

%System%\byxnecda.dll

%System%\byxnfgyq.dll

%System%\byxnmjaq.dll

%System%\byxofgyp.dll

%System%\byxoghhi.dll

%System%\byxohgyv.dll

%System%\byxoihaa.dll

%System%\byxoijaq.dll

%System%\byxonmfv.dll

%System%\byxpfffe.dll

%System%\byxpfvnf.dll

%System%\byxpfwno.dll

%System%\byxpgapo.dll

%System%\byxqgyqg.dll

%System%\byxqictn.dll

%System%\byxqjbtm.dll

%System%\byxqjdtt.dll

%System%\byxqkdbx.dll

%System%\byxqkecu.dll

%System%\byxqkevm.dll

%System%\cao110.dll

%System%\cao112.dll

%System%\cbxndsii.dll

%System%\cbxndvpf.dll

%System%\cbxngwvs.dll

%System%\cbxngxut.dll

%System%\cbxngxvw.dll

%System%\cbxnhwqk.dll

%System%\cbxnkasr.dll

%System%\cbxoexpj.dll

%System%\cbxofywp.dll

%System%\cbxohexr.dll

%System%\cbxoiawo.dll

%System%\cbxpfcvv.dll

%System%\cbxpgvum.dll

%System%\cbxphecd.dll

Notes:

%AppData% is a variable that refers to the file system directory that serves as a common repository for application-specific data. A typical path is C:\Documents and Settings\[UserName]\Application Data.
%FontsDir% is a variable that refers to a virtual folder containing fonts. A typical path is C:\Windows\Fonts.
%ProgramFiles% is a variable that refers to the Program Files folder. A typical path is C:\Program Files.
%System% is a variable that refers to the System folder. By default, this is C:\Windows\System (Windows 95/98/Me), C:\Winnt\System32 (Windows NT/2000), or C:\Windows\System32 (Windows XP).