ThreatExpert's Statistics for Trojan.Virtumonde [PC Tools]:

Trojan.Virtumonde [PC Tools] is also known as:

Threat Alias	Number of Incidents
Trojan.Vundo [Symantec]	2,782
Vundo [McAfee]	2,428
Troj/Virtum-Gen [Sophos]	2,341
Trojan.Win32.Monder.atxg [Kaspersky Lab]	2,340
Trojan.Win32.Monder [Ikarus]	2,297
Win-Trojan/Vundo.48128.D [AhnLab]	900
not-a-virus:AdWare.Win32.Virtumonde.jp [Kaspersky Lab]	180
Adware-WebBuying [McAfee]	100
TROJ_VUNDO.CAQ [Trend Micro]	90
Vundo.gen.a [McAfee]	78
Trojan Horse [Symantec]	75
TROJ_VUNDO.BCO [Trend Micro]	45
Trojan.Win32.BHO.hj [Kaspersky Lab]	43
TROJ_VUNDO.AUG [Trend Micro]	36
Trojan-Downloader.Win32.Agent.dlu [Kaspersky Lab]	36
not-a-virus:AdWare.Win32.Virtumonde.wi [Kaspersky Lab]	33
TROJ_VUNDO.AWA [Trend Micro]	29
TROJ_VUNDO.XG [Trend Micro]	29
Downloader.gen.a [McAfee]	23
Vundo.dll [McAfee]	22
Downloader [Symantec]	20
not-a-virus:AdWare.Win32.Virtumonde.fp [Kaspersky Lab]	18
not-a-virus:AdWare.Win32.Virtumonde.ayt [Kaspersky Lab]	17
Adware-Virtumundo [McAfee]	13
Generic Downloader.a [McAfee]	13
Packed.Generic.190 [Symantec]	13
Adware-Virtumondo [McAfee]	10
Generic.dx [McAfee]	10
not-a-virus:AdWare.Win32.Agent.ta [Kaspersky Lab]	10
Troj/Agent-GGD [Sophos]	10
TROJ_VUNDO.AXO [Trend Micro]	10
Trojan:Win32/Vundo.gen!AU [Microsoft]	10
Trojan-Dropper.Win32.Mudrop.cxc [Kaspersky Lab]	10
Vundo!db [McAfee]	10
not-a-virus:AdWare.Win32.Virtumonde.bq [Kaspersky Lab]	9
TROJ_VUNDO.BBV [Trend Micro]	9
Trojan.Awax [Symantec]	9
Trojan:Win32/Vundo.gen!AE [Microsoft]	9
Vundo.gen.ab [McAfee]	9
Trojan-Dropper.Win32.Mudrop [Ikarus]	8
not-a-virus:AdWare.Win32.Virtumonde [Ikarus]	7
Vundo.gen.m [McAfee]	7
Generic.ach [McAfee]	6
Packed.Generic.214 [Symantec]	6
Packed.Win32.Klone.k [Kaspersky Lab]	6
TROJ_VUNDO.AM [Trend Micro]	6
TROJ_VUNDO.BCN [Trend Micro]	6
Trojan.Duntek [Symantec]	6
Trojan.Win32.Vundo [Ikarus]	6
Trojan-Downloader.Win32.Adload.pn [Kaspersky Lab]	6
Trojan-PSW.Win32.OnLineGames.bmm [Kaspersky Lab]	6
Adware.Vundo.V.Gen [PC Tools]	5
Backdoor.Trojan [Symantec]	5
Downloader-AWX [McAfee]	5
Generic PWS.ak [McAfee]	5
not-a-virus:AdWare.Win32.Virtumonde.am [Kaspersky Lab]	5
not-a-virus:AdWare.Win32.Virtumonde.ke [Kaspersky Lab]	5
not-a-virus:AdWare.Win32.Virtumonde.ki [Kaspersky Lab]	5
TROJ_VUNDO.ACW [Trend Micro]	5
TROJ_VUNDO.AVZ [Trend Micro]	5
TROJ_VUNDO.AYT [Trend Micro]	5
Trojan.Adclicker [Symantec]	5
Trojan.Win32.Vundo.AE [Ikarus]	5
Trojan-Downloader.Win32.Small.eyx [Kaspersky Lab]	5
Adware.BetterInternet [Symantec]	4
Adware.VirtuMonde [Symantec]	4
BHO.Win32.CashOn [Ikarus]	4
Dropper/Mudrop.226816.B [AhnLab]	4
Mal/Behav-053 [Sophos]	4
Mal/Behav-103 [Sophos]	4
not-a-virus:AdWare.Win32.Virtumonde.gen [Kaspersky Lab]	4
Possible_Okho [Trend Micro]	4
PWS-Banker.gen.i [McAfee]	4
TROJ_ADLOAD.BD [Trend Micro]	4
TROJ_AGENT.NNM [Trend Micro]	4
TROJ_VUNDO.ABJ [Trend Micro]	4
TROJ_VUNDO.AH [Trend Micro]	4
TROJ_VUNDO.AMO [Trend Micro]	4
TROJ_VUNDO.AYZ [Trend Micro]	4
TROJ_VUNDO.AZM [Trend Micro]	4
TROJ_VUNDO.AZT [Trend Micro]	4
TROJ_VUNDO.BCW [Trend Micro]	4
TROJ_VUNDO.BFW [Trend Micro]	4
TROJ_VUNDO.CE [Trend Micro]	4
TROJ_VUNDO.CTC [Trend Micro]	4
TROJ_VUNDO.DNG [Trend Micro]	4
TROJ_VUNDO.DP [Trend Micro]	4
TROJ_VUNDO.NK [Trend Micro]	4
TROJ_VUNDO.YR [Trend Micro]	4
Trojan.Win32.Agent.avy [Kaspersky Lab]	4
Trojan.Win32.Agent.rpf [Kaspersky Lab]	4
Trojan.Win32.Monder.aanc [Kaspersky Lab]	4
Trojan.Win32.Monderb.xdy [Kaspersky Lab]	4
Trojan:Win32/Conhook.B [Microsoft]	4
Trojan:Win32/Vundo.gen!BC [Microsoft]	4
Trojan:Win32/Vundo.K [Microsoft]	4
Trojan-GameThief.Win32.OnLineGames [Ikarus]	4
Trojan-Spy.Win32.Banker.IS [Ikarus]	4
Infostealer.Gampass [Symantec]	3
Mal/Generic-A [Sophos]	3

Trojan.Virtumonde [PC Tools] has the following possible countries of origin:

Origin		Number of Incidents
	United Kingdom	9
	Ukraine	8
	Brazil	6
	Russian Federation	5
	Netherlands	1

Trojan.Virtumonde [PC Tools] is known to be created as:

%CommonAppData%\axizwnmh.dll

%CommonAppData%\wtgxodij.dll

%ProgramFiles%\hammer.dll

%ProgramFiles%\kernel\kernel.exe

%ProgramFiles%\tuotu\dat\setupol_3012.exe

%System%\awtqnkh.dll

%System%\awtqnkhe.dll

%System%\awtss.dll

%System%\awturom.dll

%System%\blastclnnn.exe

%System%\bthstream32.dll

%System%\byxoghhi.dll

%System%\cbxqicdw.dll

%System%\cbxwvsq.dll

%System%\cfgify.dll

%System%\ckvo0.dll

%System%\ckvo1.dll

%System%\ckvo2.dll

%System%\crack.exe

%System%\ddcca.dll

%System%\ddcywww.dll

%System%\ddcyxwu.dll

%System%\dsetwem0.dll

%System%\dsetwem2.dll

%System%\dtbcznza.dll

%System%\efcabaa.dll

%System%\efcbyyw.dll

%System%\efcywxx.dll

%System%\fcccbbx.dll

%System%\fccyywt.dll

%System%\geebxvt.dll

%System%\geedb.dll

%System%\hggdaaw.dll

%System%\hggyvvnl.dll

%System%\iifcbxv.dll

%System%\iifffvum.dll

%System%\inetext40.dll

%System%\jkhfd.dll

%System%\jkkhiif.dll

%System%\jkkixopi.dll

%System%\jkklcuur.dll

%System%\jkkljjj.dll

%System%\jkkljkl.dll

%System%\kkoqnwio.dll

%System%\ljjdcvmn.dll

%System%\ljjgddd.dll

%System%\ljjgecd.dll

%System%\mljgeff.dll

%System%\mljgffe.dll

%System%\mlljh.dll

%System%\nnnlifc.dll

%System%\nnnlifd.dll

%System%\nnnllih.dll

%System%\nnnlmnk.dll

%System%\pmnlijg.dll

%System%\pmnmjhe.dll

%System%\pmnmnkll.dll

%System%\pmnnlkj.dll

%System%\pmnoiypm.dll

%System%\pmnoleef.dll

%System%\pmtqkmd.dll

%System%\qomgebtj.dll

%System%\rqrqrom.dll

%System%\rqrspno.dll

%System%\sevices.exe

%System%\sscviihost.exe

%System%\tuvuofvv.dll

%System%\urqopop.dll

%System%\urqopqn.dll

%System%\urqpjhbb.dll

%System%\urqqpnn.dll

%System%\vtsqomk.dll

%System%\vtstqom.dll

%System%\vtstt.dll

%System%\vtutsrp.dll

%System%\vtuurpn.dll

%System%\vtuurro.dll

%System%\vtuvttr.dll

%System%\xxyvuvt.dll

%System%\xxywxrhh.dll

%System%\xxywxwt.dll

%System%\xxyxvst.dll

%System%\xxyywtt.dll

%System%\xxyyyxx.dll

%System%\yayvsqn.dll

%System%\yaywwur.dll

%System%\yayyaspj.dll

%Temp%\_a00f1cc44.exe

%Temp%\crack.exe

%Temp%\delete.exe

%Temp%\fiypkuxk.dll

%Temp%\hidcache.dll

%Temp%\ixp000.tmp\msnspy.exe

%Temp%\ssqroon.dll

%Temp%\wfujdcga.dll

%Windir%\apsagy.dll

%Windir%\odsaxu.dll

%Windir%\odunbegy.dll

%Windir%\rqrppo.dll

%Windir%\sscviihost.exe

Notes:

%CommonAppData% is a variable that refers to the file system directory containing application data for all users. A typical path is C:\Documents and Settings\All Users\Application Data.
%ProgramFiles% is a variable that refers to the Program Files folder. A typical path is C:\Program Files.
%System% is a variable that refers to the System folder. By default, this is C:\Windows\System (Windows 95/98/Me), C:\Winnt\System32 (Windows NT/2000), or C:\Windows\System32 (Windows XP).
%Temp% is a variable that refers to the temporary folder in the short path form. By default, this is C:\Documents and Settings\[UserName]\Local Settings\Temp\ (Windows NT/2000/XP).
%Windir% is a variable that refers to the Windows installation folder. By default, this is C:\Windows or C:\Winnt.