Also known as: TR/Dropper.Gen, Trojan-Dropper.Win32.Generic, Trojan.Win32.Dropper.Generic, Trojan-Dropper.Generic, Generic Dropper, Win32/Dropper.Generic, Dropper.Win32.Generic
Type: “Dropper” class malware, trojan
Variants: Dropper.Generic!C, Trojan-Dropper.Win32.Generic!BT, Dropper.Generic.C, Dropper.Generic!G2, Dropper.MSIL
Damage potential: Can infect the system with various malware
Dropper.Gen is a generic classification of malware known as a “dropper.” A dropper is a type of malware used to install other types of malware onto a victim’s system. In this context, “Gen” is short for “generic,” indicating that the detection could belong to any of a wide variety of dropper families or strains. Dropper.MSIL is similar to Dropper.Gen, except the “MSIL” means that the malware targets the .NET framework.
The main purpose of a dropper is to “drop” or deposit the payload (another piece of malware) onto the infected system. This payload can be virtually any type of malware, including ransomware, Trojans, worms, or spyware.
The most common symptoms of a Sality infection are slow system performance and disabled antivirus software or other security tools. Sality is known for blocking cybersecurity tools to prevent the device from detecting the virus.
Sources of the infection
Dropper.gen trojans usually cannot replicate themselves and spread across the network automatically. An attacker must transfer it either with a physical device or, much more commonly, through illegal software or email. As it is an old virus, it used to be spread via floppy disks, CD-ROMs, and IRC channels. Now it can spread through malicious downloads, emails, and peer-to-peer (P2P) file sharing networks.
Dropper.MSIL behaves just like Dropper.Gen, but it can also create small binary executables in order to establish itself in the system and infect it with the malware it is carrying.
Symptoms of Dropper.Gen infection
Sudden issues with internet connection and applications.
Freezing or slowdowns observed in computer performance.
Difficulties when opening documents or accessing files.
Unusual number of popup-ads appearing while online or browsing.
High CPU usage and overheating.
Characteristics and behavior of Dropper.Gen vary among different instances of the malware, so it’s crucial to keep your security software up to date.
As trojans can be sent as email attachments, you should be careful with any email messages you did not expect. Always double-check the sender’s email address. You can also use NordVPN’s Threat Protection to scan every file you download for malware.
Also, don’t use illegal software. It is often used to spread malware such as Dropper.Gen trojans.
If you suspect that your computer is infected with Dropper.Gen trojan, we recommend opening your antivirus and running a deep scan.