Virus.Win32.Tenga

Detect Date 08/26/2011
Class Virus
Platform Win32
Description

Tenga infects PE exe files. The virus can also act as a Network-Worm on machines with an unpatched DCOM RPC vulnerability. Microsoft Security Bulletin MX03-026 details the vulnerability.

After launch, Tenga checks if the domain vx9.users.freebsd is available and attempts to dowload Trojan-Downloader.Win32.Small.bdc from http://**nt*.lycos.it/v**/dl.exe

Tenga is a classic appending virus that increases the size of infected files by 3 KB.