virus logo Virus

W32/Stration!tr.dldr

description-logoAnalysis

  • Drops the file undefinedSYSTEMundefined\{RANDOM}.exe and executes.
    • {RANDOM} is ten random little English characters.
  • The dropped file is a Trojan-downloader. Fortinet detects it as W32/Stration.DT@mm. Upon executing, it will download a malicious file from the Internet and execute. The downloaded file is a variant of Stration.

    • Telemetry logoTelemetry

    Detection Availability

    FortiGate
    Extended
    FortiClient
    FortiMail
    FortiSandbox
    FortiWeb
    Web Application Firewall
    FortiIsolator
    FortiDeceptor
    FortiEDR

    Version Updates

    Date Version Detail
    2022-11-29 90.08277
    2022-09-26 90.06332
    2021-05-19 86.00293
    2019-12-17 73.86600 Sig Updated
    2019-03-05 66.83600 Sig Updated
    2019-01-28 65.98000 Sig Updated
    2018-11-01 63.86000 Sig Updated
    2018-10-21 63.09600 Sig Updated
    2018-09-29 62.56500 Sig Updated
    ID 303628
    Released Nov 09, 2006
    Description
    Updated    		 Nov 10, 2006
    Aliases Email-Worm.Win32.Warezov.fh, Troj/StraDr-Gen, TROJ_STRAT.FN
    Platform Profile Win32 file format / PE 32 bit
    Profile Type Trojan Downloader (tr.dldr)