Threat Search: 

ThreatExpert's Statistics for Trojan.Win32.Antavmu [Ikarus]:

Trojan.Win32.Antavmu [Ikarus] is also known as:
Threat AliasNumber of Incidents
Trojan Horse [Symantec]6
Backdoor.Win32.IRCBot.lzd [Kaspersky Lab]5
Mal/Behav-268 [Sophos]4
VirTool:Win32/CeeInject.gen!AA [Microsoft]4
W32/Sdbot.worm!ds [McAfee]4
Backdoor.IRC.Bot [Symantec]2
Backdoor.Sdbot [Symantec]2
Mal/Generic-A [Sophos]2
Troj/Inject-IL [Sophos]2
Trojan.Generic [PC Tools]2
Trojan.Win32.Antavmu.efv [Kaspersky Lab]2
Trojan.Win32.Antavmu.egh [Kaspersky Lab]2
Trojan.Win32.Buzus.bunw [Kaspersky Lab]2
VirTool:Win32/CeeInject.gen!A [Microsoft]2
Win32/IRCBot.worm.variant [AhnLab]2
Win-Trojan/Buzus.454706 [AhnLab]2
Dropper/Buzus.104960 [AhnLab]1
Generic AdClicker.c [McAfee]1
Generic Dropper!yp [McAfee]1
Generic Dropper.iu [McAfee]1
Suspicious.MH690 [Symantec]1
Troj/Bckdr-QXE [Sophos]1
Trojan.Win32.Antavmu.cmm [Kaspersky Lab]1
Trojan.Win32.Antavmu.dhg [Kaspersky Lab]1
Trojan.Win32.Antavmu.eab [Kaspersky Lab]1
Trojan.Win32.Antavmu.eae [Kaspersky Lab]1
VirTool:Win32/CeeInject.gen!U [Microsoft]1
Win-Trojan/Antavmu.352453 [AhnLab]1
Win-Trojan/Antavmu.508360 [AhnLab]1
Win-Trojan/Buzus.73296 [AhnLab]1
Worm:Win32/Shakolan.A [Microsoft]1

Trojan.Win32.Antavmu [Ikarus] has the following possible countries of origin:
OriginNumber of Incidents
Sweden9
Russian Federation3
Slovakia1
Taiwan1

Trojan.Win32.Antavmu [Ikarus] is known to be created as:
%AppData%\s03-7323-geynawt-2623-tgaw\winlogon.exe
%System%\twex.exe
%Temp%\ixp000.tmp\cuti.exe
%Temp%\ixp000.tmp\reptile.exe
%Windir%\msupdate32.exe
Notes:
  • %AppData% is a variable that refers to the file system directory that serves as a common repository for application-specific data. A typical path is C:\Documents and Settings\[UserName]\Application Data.
  • %System% is a variable that refers to the System folder. By default, this is C:\Windows\System (Windows 95/98/Me), C:\Winnt\System32 (Windows NT/2000), or C:\Windows\System32 (Windows XP).
  • %Temp% is a variable that refers to the temporary folder in the short path form. By default, this is C:\Documents and Settings\[UserName]\Local Settings\Temp\ (Windows NT/2000/XP).
  • %Windir% is a variable that refers to the Windows installation folder. By default, this is C:\Windows or C:\Winnt.