The Web    Google
2/23: Anicmoo-B a Downloader Trojan

2/23: Anicmoo-B a Downloader Trojan
February 23, 2005

Trojan.Anicmoo.B is a downloader Trojan that exploits the Windows User32.DLL ANI File Header Handling Stack-Based Buffer Overflow Vulnerability (as described in the Microsoft Security Bulletin MS05-002). The Trojan exists as a malformed animated cursor (.ani).

This Trojan downloads a copy of SecurityRisk.Downldr.

Technical details can be found at Symantec page.

  • CEO Warns Threats are Coming from the Inside
  • 4/8: Mytob-AB Worm Comes as Attachment
  • 1/25: Sdbot-TW Worm Has Backdoor Functions
  • RSA Makes Mobile Security Push
  • 3/16: Rbot-YB Worm OKs Remote Access
  • 6/2: Korgo-F Threat Level Heightened
  • 10/13: Bifrose a Trojan Horse
  • A case study in security incident forensics and response.
  • AOL's AIM Puts Browser Security in Danger
  • 10/21: Bloodhound.Exploit-17 Detects Files
  • Researcher: IE Cumulative Patch Inadequate
  • Security Camera Product