ThreatExpert's Statistics for Trojan.Crypt [Ikarus]:

Trojan.Crypt [Ikarus] is also known as:

Threat Alias	Number of Incidents
Trojan Horse [Symantec]	1,016
Mal/Generic-A [Sophos]	855
Win-Trojan/Xema.variant [AhnLab]	485
Trojan.Win32.Pincav.pw [Kaspersky Lab]	400
FakeAlert-FH [McAfee]	363
Win-Trojan/Pincav.438784 [AhnLab]	300
Mal/EncPk-IV [Sophos]	253
Trojan.Crypt.GEN [PC Tools]	165
Mal/Banker-E [Sophos]	139
Mal/EncPk-HL [Sophos]	120
Generic.dx [McAfee]	111
Trojan:Win32/FakeXPA [Microsoft]	110
Trojan.Generic [PC Tools]	106
Suspicious.MH690 [Symantec]	105
Trojan-Downloader.Win32.Agent.ckkp [Kaspersky Lab]	99
Infostealer.Gampass [Symantec]	79
Trojan:Win32/Meredrop [Microsoft]	78
Packed.Win32.Black.a [Kaspersky Lab]	76
Packed.Generic.237 [Symantec]	71
Mal/EncPk-HL, Mal/FakeVirPk-A [Sophos]	67
Downloader [Symantec]	63
Backdoor.Trojan [Symantec]	58
Backdoor:Win32/Small.D [Microsoft]	58
New Malware.jn [McAfee]	58
Trojan-Banker.Win32.Banker.etk [Kaspersky Lab]	55
Backdoor.PcClient.Gen.3 [PC Tools]	48
BKDR_PCCLIEN.AFR [Trend Micro]	43
Mal/HckPk-E [Sophos]	41
Troj/MDrop-CAX [Sophos]	40
Mal/Dorf-F [Sophos]	39
Mal_Banker [Trend Micro]	37
Downloader.MisleadApp [Symantec]	36
Trojan:Win32/Ertfor.A [Microsoft]	34
Mal/Behav-285 [Sophos]	33
Trojan-Downloader.Win32.FraudLoad.ehq [Kaspersky Lab]	33
Generic BackDoor.ah [McAfee]	32
Trojan:Win32/Malagent [Microsoft]	29
Mal/Emogen-R [Sophos]	28
HeurEngine.MaliciousPacker [PC Tools]	27
Trojan.Fakeavalert [Symantec]	27
Generic BackDoor [McAfee]	26
Infostealer [Symantec]	26
Mal/HckPk-A [Sophos]	25
Packed.Generic.271 [Symantec]	25
Packed.Win32.Katusha.j [Kaspersky Lab]	25
Trojan.Vundo [Symantec]	25
Worm:Win32/Mariofev.A [Microsoft]	25
Backdoor:Win32/PcClient.AI [Microsoft]	24
New Malware.bl [McAfee]	24
Trojan-Downloader.Win32.FraudLoad [Ikarus]	24
Virus.Win32.Induc.a [Kaspersky Lab]	24
Backdoor:Win32/PcClient.AA [Microsoft]	22
Trojan:Win32/Ertfor.B [Microsoft]	22
Backdoor:Win32/Poisonivy.E [Microsoft]	21
Mal/EncPk-CK [Sophos]	21
Mal/Behav-004, Mal/MassMail-A, Mal/Behav-001 [Sophos]	20
PWS:Win32/OnLineGames.GM [Microsoft]	20
Generic Dropper!m [McAfee]	19
Mal/Banspy-F [Sophos]	19
Mal/Dorf-F, Mal/EncPk-HL, Mal/FakeVirPk-A [Sophos]	19
Trojan-PSW.Gampass [PC Tools]	19
Trojan-Spy.Win32.Agent.amhu [Kaspersky Lab]	19
Backdoor.Pcclient [Symantec]	18
FakeAlert-SpywareGuard.gen.b [McAfee]	18
Infostealer.Bancos [Symantec]	17
Troj/IRCBot-ADF [Sophos]	17
TrojanDropper:Win32/Emold.C [Microsoft]	17
Backdoor.Formador [Symantec]	16
Generic.dx!cv [McAfee]	16
Trojan-GameThief.Win32.OnLineGames.bmns [Kaspersky Lab]	16
Backdoor.Win32.Bifrose.adnm [Kaspersky Lab]	15
Generic PUP.x [McAfee]	15
Mal/Generic-A, Mal/FakeAV-BX [Sophos]	15
PWS-Mmorpg!mc [McAfee]	15
W32.Spybot.Worm [Symantec]	15
Win-Trojan/MalCrypted.Gen [AhnLab]	15
Backdoor:Win32/PcClient.DF [Microsoft]	14
Generic Downloader.x [McAfee]	14
Generic.dx!bew [McAfee]	14
Trojan.Win32.Agent2.kyn [Kaspersky Lab]	14
VB-BackDoor.a.gen [McAfee]	14
Win-Trojan/Agent2.11264.Y [AhnLab]	14
BackDoor-CKB.gen.dr [McAfee]	13
Trojan-Spy.Win32.Delf.gmh [Kaspersky Lab]	13
W32.Gammima.AG [Symantec]	13
BackDoor-CKB.dr [McAfee]	12
Mal/Behav-290 [Sophos]	12
Packed.Generic.187 [Symantec]	12
Trojan.FakeAlert [PC Tools]	12
Trojan.Win32.Dialer.exm [Kaspersky Lab]	12
Trojan-Downloader.FraudLoad!sd6 [PC Tools]	12
Trojan-Downloader.Win32.Agent.atcj [Kaspersky Lab]	12
Win-Trojan/OnlineGameHack.20008.AE [AhnLab]	12
Generic Dropper [McAfee]	11
Mal/EncPk-IY [Sophos]	11
Mal/UnkPack-Fam [Sophos]	11
Packed.Win32.Tdss.m [Kaspersky Lab]	11
TROJ_SPAMBOT.AS [Trend Micro]	11
W32.IRCBot [Symantec]	11
Backdoor.Graybird [Symantec]	10

Trojan.Crypt [Ikarus] has the following possible countries of origin:

Origin		Number of Incidents
	Brazil	478
	China	216
	Russian Federation	154
	Germany	30
	United Kingdom	22
	Italy	20
	Republic of Korea	14
	Switzerland	14
	Sweden	11
	France	10
	Spain	9
	Ukraine	9
	Taiwan	7
	Israel	6
	Egypt	5
	Australia	4
	Croatia	4
	Japan	4
	Saudi Arabia	3
	Bulgaria	2
	Canada	2
	Portugal	2
	Thailand	2
	Austria	1
	Greece	1
	Iran	1
	Ireland	1
	Mexico	1
	Morocco	1
	Netherlands	1
	Poland	1
	United Arab Emirates	1

Trojan.Crypt [Ikarus] is known to be created as:

%AllUsersProfile%\lsass32.exe

%AppData%\adobe\player.exe

%AppData%\bifrost\server.exe

%AppData%\csrss.exe

%AppData%\macromedia\common\ff7100021.dll

%AppData%\nsvcappflt.exe

%AppData%\server.exe

%AppData%\srvsvc32.dll

%CommonAppData%\11658434\11658434.exe

%CommonAppData%\12173904\12173904.exe

%CommonAppData%\93125926\93125926.exe

%CommonAppData%\microsoft\office\system\finder.dll

%CommonAppData%\microsoft\office\system\sysloader.exe

%CommonAppData%\microsoft\vmonitor.exe

%CommonAppData%\microsoft\windows\mspdb12.dll

%CommonAppData%\wmimgmt.exe

%CommonPrograms%\startup\winupdate.exe

%FontsDir%\nvcpl.exe

%FontsDir%\smss.exe

%ProgramFiles%\%systemdir%\uninstaller.exe

%ProgramFiles%\%winder%system\port_killer.exe

%ProgramFiles%\acspmonitor\settings.exe

%ProgramFiles%\adobe\reader 9.0\reader\acro-broker.exe

%ProgramFiles%\adobe\reader 9.0\reader\acrord-32.exe

%ProgramFiles%\adult tube xxx codec\antivirus\service.exe

%ProgramFiles%\antadis\translator internet\install.exe

%ProgramFiles%\antivirus agent pro\aap.exe

%ProgramFiles%\antivirus\antivirus.exe

%ProgramFiles%\avira\avira.exe

%ProgramFiles%\bifrost\server.exe

%ProgramFiles%\cam\cam.exe

%ProgramFiles%\common files\cthelper.exe

%ProgramFiles%\common files\microsoft\cthelper.exe

%ProgramFiles%\common files\svchost.exe

%ProgramFiles%\common files\system\servicess.exe

%ProgramFiles%\iccup\launcher\launcher.exe

%ProgramFiles%\inert1.exe

%ProgramFiles%\ivocalize web conference 4\msmsgs.exe

%ProgramFiles%\king arthur\launcher.exe

%ProgramFiles%\k-lite\mplayerc.exe

%ProgramFiles%\maxa cookie manager lite\ie7cookie.exe

%ProgramFiles%\maxa cookie manager\ie7cookie.exe

%ProgramFiles%\microsoft common\svchost.exe

%ProgramFiles%\msn\messenger.exe

%ProgramFiles%\msn\msn.exe

%ProgramFiles%\pasvmp.exe

%ProgramFiles%\psecurity\psecurity.exe

%ProgramFiles%\rss team\sqlite3.dll

%ProgramFiles%\six-pack\_uninstall\uninstall.exe

%ProgramFiles%\swish max3\swishmax3.exe

%ProgramFiles%\system32\system32.exe

%ProgramFiles%\update\msn.exe

%Programs%\startup\chkdisk.dll

%Programs%\startup\userinit.exe

%System%\1028b.exe

%System%\1035\msnmgsr.exe

%System%\1035\scvhost.exe

%System%\1199.exe

%System%\advhost.exe

%System%\asddc218.dll

%System%\asin.exe

%System%\asyq.exe

%System%\autochk.dll

%System%\avg.exe

%System%\basic.exe

%System%\bckgres32.dll

%System%\bifrost\scvhost.exe

%System%\bifrost\server.exe

%System%\bmidi7ck1lmfdc8f0j6ik6m.dll

%System%\bnmkue0.dll

%System%\bnmkue1.dll

%System%\browscap32.dll

%System%\bs77.exe

%System%\c1ass.exe

%System%\chtskdic32.dll

%System%\cltmon.exe

%System%\daili.exe

%System%\defender\services.exe

%System%\defender\svchost.exe

%System%\digeste.dll

%System%\digiwet.dll

%System%\dllcache\031.exe

%System%\dllcache\clipsrv.exe

%System%\dllcache\lvbao.exe

%System%\dllcache\userinit.exe

%System%\dllcache\x010.exe

%System%\drivers\aio51.sys

%System%\drivers\drvmon.exe

%System%\drivers\ecs61.sys

%System%\drivers\gbph.sys

%System%\drivers\hxj01.sys

%System%\drivers\jyi33.sys

%System%\drivers\lsass.exe

%System%\drivers\lsx05.sys

%System%\drivers\services.exe

%System%\drivers\svchost.exe

%System%\drivers\vei16.sys

%System%\drumpd.exe

%System%\elbfycgyx\lsass.exe

%System%\explorie.exe

Notes:

%AllUsersProfile% is a variable that specifies the all users' profile folder. By default, this is C:\Documents and Settings\All Users (Windows NT/2000/XP).
%AppData% is a variable that refers to the file system directory that serves as a common repository for application-specific data. A typical path is C:\Documents and Settings\[UserName]\Application Data.
%CommonAppData% is a variable that refers to the file system directory containing application data for all users. A typical path is C:\Documents and Settings\All Users\Application Data.
%CommonPrograms% is a variable that refers to the file system directory that contains the directories for the common program groups that appear on the Start menu for all users. A typical path is C:\Documents and Settings\All Users\Start Menu\Programs (Windows NT/2000/XP).
%FontsDir% is a variable that refers to a virtual folder containing fonts. A typical path is C:\Windows\Fonts.
%ProgramFiles% is a variable that refers to the Program Files folder. A typical path is C:\Program Files.
%Programs% is a variable that refers to the file system directory that contains the user's program groups. A typical path is C:\Documents and Settings\[UserName]\Start Menu\Programs.
%System% is a variable that refers to the System folder. By default, this is C:\Windows\System (Windows 95/98/Me), C:\Winnt\System32 (Windows NT/2000), or C:\Windows\System32 (Windows XP).