Description
Trojan that spreads manually under beneficial prospects, involves security and system exploitation executing unknown programs.
Transfers by a lot so means from peer networking to email etc. No own spreading routine
Platforms / OS:
• Windows 95
• Windows 98
• Windows 98 SE
• Windows NT
• Windows ME
• Windows 2000
• Windows XP
• Windows 2003
Indication of Infection
Downloads malicious files
Writes executable in the windows folder
Drops malicious files
Registry modification
Enumerates running processes
It deletes the initially executed copy of itself.
In order to aggravate detection and reduce size of the file it is packed with a runtime packer .
Methods of Infection
Aliases
• F-Secure: Trojan-GameThief.Win32.Magania.aozb, Kaspersky: Trojan-GameThief.Win32.Magania.aozb