ThreatExpert's Statistics for VirTool:Win32/VBInject.gen!AN [Microsoft]:

VirTool:Win32/VBInject.gen!AN [Microsoft] is also known as:

Threat Alias	Number of Incidents
Trojan-Dropper.Win32.VB.ijd [Kaspersky Lab]	184
Trojan Horse [Symantec]	93
Generic Dropper.gi.gen [McAfee]	70
Mal/Generic-A [Sophos]	65
VirTool.Win32.VBInject [Ikarus]	57
Trojan.Generic [PC Tools]	43
Win-Trojan/Xema.variant [AhnLab]	36
Backdoor.Win32.Bifrose [Ikarus]	22
Packed.Win32.CPEX-based.ht [Kaspersky Lab]	21
Backdoor.Trojan [Symantec]	18
Backdoor.Win32.Poison [Ikarus]	18
Generic VB.b [McAfee]	18
Trojan.Win32.VB [Ikarus]	15
Trojan.Win32.Refroso.acsp [Kaspersky Lab]	14
Trojan.Win32.VB.vct [Kaspersky Lab]	14
Mal/VB-AO, Mal/VB-AB [Sophos]	13
Generic.dx!nkg [McAfee]	12
Trojan-Dropper.Delf [Ikarus]	12
Mal/VB-AB [Sophos]	11
Trojan.Win32.Inject.agye [Kaspersky Lab]	11
Trojan-Dropper.VB.INQ [PC Tools]	10
Trojan-PWS.Win32.LdPinch [Ikarus]	10
Backdoor-DZP [McAfee]	9
Backdoor.Darkmoon [PC Tools]	8
Backdoor.Darkmoon [Symantec]	8
Backdoor.Win32.Bifrose.bmvv [Kaspersky Lab]	8
Troj/VBstik-Gen, Mal/Dropper-AL [Sophos]	8
Win-Trojan/Poison.49252.B [AhnLab]	8
Generic BackDoor.bb [McAfee]	7
Generic Dropper.gu [McAfee]	7
Mal/VB-F [Sophos]	7
Trojan-Dropper.Win32.VB [Ikarus]	7
Trojan-Dropper.Win32.VB.ics [Kaspersky Lab]	7
VirTool.Win32.Vbinder [Ikarus]	7
Generic BackDoor [McAfee]	6
Generic.dx [McAfee]	6
Trojan.VB.IEE [PC Tools]	6
Trojan-Banker.Win32.Bancos.lxz [Kaspersky Lab]	6
Win-Trojan/Poison.561152.B [AhnLab]	6
Generic Dropper [McAfee]	5
HackTool.Win32.Crypt [Ikarus]	5
Infostealer [Symantec]	5
Trojan-Dropper.Win32.VB.aaap [Kaspersky Lab]	5
Backdoor.Bifrose [Symantec]	4
Backdoor.Win32.Poison.acnx [Kaspersky Lab]	4
Backdoor.Win32.Poison.rbb [Kaspersky Lab]	4
Dropper/Xema.39989 [AhnLab]	4
Dropper/Xema.53248.U [AhnLab]	4
Mal/Generic-E [Sophos]	4
Net-Worm.Win32.Kolab [Ikarus]	4
Suspicious.MH690 [Symantec]	4
Troj/VBstik-Gen [Sophos]	4
Trojan.Win32.Refroso.xy [Kaspersky Lab]	4
Trojan.Win32.VB.fov [Kaspersky Lab]	4
Trojan-Dropper.Win32.VB.iar [Kaspersky Lab]	4
Trojan-Dropper.Win32.VB.lni [Kaspersky Lab]	4
Win-Trojan/Agent.147466 [AhnLab]	4
Win-Trojan/Poison.20480.AI [AhnLab]	4
Backdoor.Poison!sd6 [PC Tools]	3
Backdoor.Poison.rbb [PC Tools]	3
BackDoor-DZQ [McAfee]	3
Generic VB.i [McAfee]	3
Generic.dx!fdp [McAfee]	3
Trojan.VB!sd6 [PC Tools]	3
Trojan.Win32.VB.fqx [Kaspersky Lab]	3
Trojan.Win32.VB.ilm [Kaspersky Lab]	3
Trojan-Dropper [Ikarus]	3
Trojan-Dropper.Vb [Ikarus]	3
Win-Trojan/Poison.30212 [AhnLab]	3
Win-Trojan/Poison.53248 [AhnLab]	3
Backdoor.Win32.Bifrose.aisz [Kaspersky Lab]	2
Backdoor.Win32.Poison.agmy [Kaspersky Lab]	2
Backdoor.Win32.Poison.ajrq [Kaspersky Lab]	2
Backdoor.Win32.Poison.sab [Kaspersky Lab]	2
Backdoor-CEP [McAfee]	2
BackDoor-CEP.gen.j [McAfee]	2
BackDoor-CEP.svr [McAfee]	2
Backdoor-DZQ [McAfee]	2
Generic Dropper!h [McAfee]	2
Generic VB.au [McAfee]	2
Mal/Behav-103, Mal/Behav-043 [Sophos]	2
Mal/Behav-221 [Sophos]	2
Mal/Behav-359 [Sophos]	2
Mal/Generic-D [Sophos]	2
Mal/VB-AA [Sophos]	2
Mal/VB-AB, Mal/VB-AA [Sophos]	2
Mal/VBDrop-G [Sophos]	2
Mal/VBDrop-G, Mal/VB-AO, Mal/VB-AB [Sophos]	2
Troj/VB-EIP [Sophos]	2
Trojan.Generic [Ikarus]	2
Trojan.VB.ilm [PC Tools]	2
Trojan.Win32.Scar.avqi [Kaspersky Lab]	2
Trojan.Win32.VB.llw [Kaspersky Lab]	2
Trojan.Win32.VB.yzy [Kaspersky Lab]	2
Virus.Trojan.Win32.VB [Ikarus]	2
Virus.Win32.PePatch [Ikarus]	2
Virus.Win32.VB [Ikarus]	2
W32/Spybot.worm.gen [McAfee]	2
Win-Trojan/Agent.24576.AKE [AhnLab]	2
Win-Trojan/Bifrose.221184 [AhnLab]	2

VirTool:Win32/VBInject.gen!AN [Microsoft] has the following possible countries of origin:

Origin		Number of Incidents
	Spain	89
	Germany	14
	Russian Federation	2
	Sweden	2

VirTool:Win32/VBInject.gen!AN [Microsoft] is known to be created as:

%AppData%\bifrost\server.exe

%AppData%\kopu\hy.exe

%AppData%\msn\msn.exe

%AppData%\systemproc\lsass.exe

%AppData%\viaze\24.exe

%MyDocuments%\my music\40381.exe

%ProgramFiles%\a1a1a-ramdan.exe

%ProgramFiles%\bifrost\antyvirus.exe

%ProgramFiles%\bifrost\server.exe

%ProgramFiles%\google\server.exe

%ProgramFiles%\h.exe

%ProgramFiles%\kopu\hy.exe

%ProgramFiles%\massenger live\server.exe

%ProgramFiles%\msndroby\happy.exe

%ProgramFiles%\system32\system.exe

%ProgramFiles%\system32\system32.exe

%ProgramFiles%\system32\system32r.exe

%ProgramFiles%\updat\update.exe

%ProgramFiles%\update\updates.exe

%ProgramFiles%\win\win.exe

%ProgramFiles%\win32\server.exe

%ProgramFiles%\windose\run.exe

%ProgramFiles%\windows live\msn.exe

%ProgramFiles%\windows\windows.exe

%ProgramFiles%\windows32\hkg.exe

%ProgramFiles%\windowslive\windowslive.exe

%Programs%\startup\xp.exe

%System%\afg32.exe

%System%\bifrost\bifrost.exe

%System%\bifrost\nedx.exe

%System%\bifrost\saret.exe

%System%\bifrost\sect.exe

%System%\bifrost\server.exe

%System%\cmd32.exe

%System%\csmi\csmi.exe

%System%\dfgd\server.exe

%System%\dimarage\dimarage.exe

%System%\driverrs\adv9n5.dll.exe

%System%\explorer\explorer.exe

%System%\firefox.exe

%System%\firewal.exe

%System%\fsl32.exe

%System%\iexplore.exe

%System%\lcass.exe

%System%\logon.exe

%System%\mida\mida.exe

%System%\msconf.exe

%System%\msn\msn.exe

%System%\nrmn32.exe

%System%\nwiz.exe

%System%\plugin\plugin.exe

%System%\poupoune\poupoune.exe

%System%\serve.exe

%System%\server.exe

%System%\seste\mm.exe

%System%\shell\shell32.exe

%System%\sp\sp1.exe

%System%\svchostt.exe

%System%\svhoster.exe

%System%\svhoster32.exe

%System%\system32\regedit.exe

%System%\system32\system.exe

%System%\system32\system32.exe

%System%\systeme233\server.exe

%System%\twext.exe

%System%\uninstall.exe

%System%\updat32.exe

%System%\viaze\24.exe

%System%\vigaze\2497.exe

%System%\win32\server.exe

%System%\winbmpshst.exe

%System%\winfiles.exe

%System%\winiogon.exe

%System%\winupd.exe

%System%\wupdate.exe

%Temp%\1.exe

%Temp%\2.exe

%Temp%\bot.exe

%Temp%\ixp000.tmp\aa.exe

%Temp%\ixp000.tmp\bb.exe

%Temp%\ixp000.tmp\cc.exe

%Temp%\ixp000.tmp\emul.exe

%Temp%\ixp000.tmp\fotolog.exe

%Temp%\ixp000.tmp\kek.exe

%Temp%\ixp000.tmp\mssn.exe

%Temp%\ixp000.tmp\porno.exe

%Temp%\ixp000.tmp\rc.exe

%Temp%\ixp000.tmp\reptile.exe

%Temp%\ixp000.tmp\svchost.exe

%Temp%\ixp000.tmp\test.exe

%Temp%\ixp000.tmp\update.exe

%Temp%\ixp000.tmp\xfile.exe

%Temp%\ixp000.tmp\xp.exe

%Temp%\ixp000.tmp\xsexyx.exe

%Temp%\ixp000.tmp\zizu.exe

%Temp%\rarsfx0\sound.exe

%Temp%\rarsfx0\sysll.exe

%Temp%\server.exe

%Temp%\stub.exe

%Temp%\stub\stiki.exe

Notes:

%AppData% is a variable that refers to the file system directory that serves as a common repository for application-specific data. A typical path is C:\Documents and Settings\[UserName]\Application Data.
%MyDocuments% is a variable that refers to the file system directory used to physically store a user's common repository of documents. A typical path is C:\Documents and Settings\[UserName]\My Documents.
%ProgramFiles% is a variable that refers to the Program Files folder. A typical path is C:\Program Files.
%Programs% is a variable that refers to the file system directory that contains the user's program groups. A typical path is C:\Documents and Settings\[UserName]\Start Menu\Programs.
%System% is a variable that refers to the System folder. By default, this is C:\Windows\System (Windows 95/98/Me), C:\Winnt\System32 (Windows NT/2000), or C:\Windows\System32 (Windows XP).
%Temp% is a variable that refers to the temporary folder in the short path form. By default, this is C:\Documents and Settings\[UserName]\Local Settings\Temp\ (Windows NT/2000/XP).