Trojan.Win32.Dulom.A is a Trojan that targets the Windows platform. This malware installs Rootkits on a victim's system to disable security software "Gbuster". Furthermore, it sends system information to a remote attacker. It modifies the proxy configuration of web browsers to use a remote proxy auto-config file for the purpose of redirecting a user's online banking activities to a remote proxy host. This is used to steal a user's credentials. More over, it renames the "hosts" file on infected systems to disable local domain name resolution queries.

• Microsoft Windows All Versions