Analysis by: Jennifer Gumban
ALIASES:

Rootkit.Win32.Agent.eimz (Kaspersky)

 PLATFORM:

Windows 2000, Windows Server 2003, Windows XP (32-bit, 64-bit), Windows Vista (32-bit, 64-bit), Windows 7 (32-bit, 64-bit)

 OVERALL RISK RATING:
 DAMAGE POTENTIAL:
 DISTRIBUTION POTENTIAL:
 REPORTED INFECTION:
 INFORMATION EXPOSURE:

  • Threat Type: Rootkit

  • Destructiveness: No

  • Encrypted:

  • In the wild: Yes

  OVERVIEW

Canal de infección Downloaded from the Internet, Dropped by other malware

This rootkit may arrive bundled with malware packages as a malware component. It arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites.

Its rootkit functionalities are used by other malware/grayware.

It requires its main component to successfully perform its intended routine.

  TECHNICAL DETAILS

Tamaño del archivo 280,200 bytes
Tipo de archivo SYS
Fecha de recepción de las muestras iniciales 08 Nov 2015

Arrival Details

This rootkit may arrive bundled with malware packages as a malware component.

It arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites.

Rootkit Capabilities

This rootkit s rootkit functionalities are used by other malware/grayware.

Other Details

This rootkit requires its main component to successfully perform its intended routine.