Trojan.Peacomm is a Trojan horse that drops a driver program file to download additional security threats.
Trojan.Peacomm reportedly arrives as an attachment to a spammed email with the following characteristics:
Subject:
One of the following:
- A killer at 11, he´s free at 21 and kill again!
- U.S. Secretary of State Condoleezza Rice has kicked German Chancellor Angela Merkel
- British Muslims Genocide
- Naked teens attack home director.
- 230 dead as storm batters Europe.
- Re: Your text
Attachment:
One of the following:
- FullVideo.exe
- Full Story.exe
- Video.exe
- Read More.exe
- FullClip.exe
Protection
- Virus Definitions (LiveUpdate™ Daily) January 19, 2007
- Virus Definitions (LiveUpdate™ Weekly) January 24, 2007
- Virus Definitions (Intelligent Updater) January 19, 2007
- Virus Definitions (LiveUpdate™ Plus) January 19, 2007
Threat Assessment
Wild
- Wild Level: Low
- Number of Infections: 0 - 49
- Number of Sites: 0 - 2
- Geographical Distribution: Low
- Threat Containment: Easy
- Removal: Easy
Damage
- Damage Level: Medium
- Payload: Downloads additional security threats.
- Degrades Performance: Sent UDP packets may degrade performance.
Distribution
- Distribution Level: Medium
- Ports: UDP port 4000
- Target of Infection: Peer to Peer
Discovered: January 19, 2007
Updated: January 20, 2007 03:41:45 PM GMT
Type: Trojan Horse
Systems Affected: Windows 2000, Windows 95, Windows 98, Windows Me, Windows NT, Windows Server 2003, Windows XP
When Trojan.Peacomm is executed, it performs the following actions: