Multiple updates with same Malware

Discussion in 'ESET NOD32 Antivirus' started by aluminex, Jul 31, 2012.

Thread Status:
Not open for further replies.
  1. aluminex

    aluminex Registered Member

    Joined:
    Oct 13, 2009
    Posts:
    143
    I was curious as to why multiple updates contain the same definition for Win32/TrojanDownloader.Zortob.B?

    For instance, the signature for this piece of malware is included in update 7337, 7338, and 7339.

    Also, what is the number in parenethesis after the Malware name?

    http://go.eset.com/us/threat-center/threatsense-updates/page/2/



    Win32/TrojanDownloader.Zortob.B(47) 7339
    Win32/TrojanDownloader.Zortob.B(3) 7338
    Win32/TrojanDownloader.Zortob.B 7337

    What is the difference?
     
    aluminex, Jul 31, 2012
    #1
  2. Cudni

    Cudni Global Moderator

    Joined:
    May 24, 2009
    Posts:
    6,963
    Location:
    Somethingshire
    Probably a slight variant of the same family malware that merits separate detection
     
    Cudni, Jul 31, 2012
    #2
  3. Marcos

    Marcos Eset Staff Account

    Joined:
    Nov 22, 2002
    Posts:
    14,456
    Often the malware remains same, just the packer changes to avoid detection.
     
    Marcos, Aug 1, 2012
    #3
Thread Status:
Not open for further replies.
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Accept Learn More...