This Trojan may arrive bundled with malware packages as a malware component.
TROJ_WMIGHOST.A is Trend Micro detection for malicious WMI (Windows Management Instrumentation) Script.
TROJ_WMIGHOST.A bundles with the following malware in order to fully perform its malicious routine:
TROJ_WMIGHOST.A has the capability to gather file(s) with the following file extension:
The collected target files are saved in the following folder:
This malware will compress the collected file(s) using CAB Format before it sends via HTTP Post to the following
It connects to the following Web site to receive commands and send command results: