Mal/Behav-103

Mal/Behav-103 is a well known Trojan, which has been circulating around the web since October of 2011, when Libyan dictator Muammar Gaddafi was captured and assassinated by rebel militia, who did not accept the leader’s political ruling. Immediately after this incident happened, cyber criminals found a window of opportunity, and fictitious spam emails were spread all over the Internet. Such mail was supposedly sent by AFP (Agnece France–Presse) news agency, which, of course, have nothing to do with the malicious Trojan, and the following subject was entered to attract readers’ attention: “AFP Photo News: Bloody Photos: Libya dictator Moammar Gadhafi’s Death”. And inside these emails, such text was found:

Libya dictator Moammar Gadhafi’s Death

Libyan dictator Moammar Gadhafi, the most wanted man in the world, has been killed, the country’s rebel government claimed Oct. 20. The flamboyant tyrant who terrorized his country and much of the world during his 42 years of despotic rule was cornered by insurgents in the town of Sirte, where Gadhafi had been born and a stronghold of his supporters.

Inside the email Mal/Behav-103 Trojan’s infection was hidden, with a cunning setup’s file Bloody Photos_Gadhafi_Death.rar. With this, oblivious Windows users were fooled into opening the fake spam email’s attachment, and the latent infection slithered inside the system without any trace.

Mal/Behav-103 is extremely hazardous, and it stands on two cloaked components, backdoor csrssr.exe and svchost.exe, which can cause irretrievable damage to your Windows system’s functionality. Svchost.exe is by far the most dangerous Trojan’s file, as it has abilities to connect to the Internet, steal information and disrupt overall computer’s performance. This infectious component can add or delete Registry entries, change its own structure, modify Windows Security Center, copy address book contacts, record browsing activity with BHOs, download additional malware, redirect you from santander.com.br, paypal.com, bancobrasil.com.br, hotmail.com and many other sites, or even modify USB drives, so that the infection could be spread via removable devices!

If you do not delete Mal/Behav-103 from the computer, keyloggers and viruses could slither in latently, your banking and other sensitive information could be recorded, and your personal accounts could be used to spread the Trojan to even more Windows systems. So, do not postpone this removal operation any longer and delete Mal/Behav-103 right away! We suggest using automatic removal tools for the task, because these would detect and delete all infection’s files easily, and you would not have to worry about your Windows system’s protection any longer! If you want to proceed will malware removal manually, be sure you have previous experience at dealing with polymorphic Trojans.