Agent.AWF

AWF (or Agent.AWF) is a malicious Trojan downloader affecting the Microsoft Windows operating system.[1]

Not to be confused with Agent.btz, which is a computer worm used in the 2008 cyberattack on United States.

Methods of infection

This Trojan is considered obsolete, and there are no known variants in the wild.[1]

Affected operating systems

The following operating systems are known to be affected.

Operation

Agent.AWF displays virus activity in that it replaces files on a user's computer with a copy of itself, and moves the original, legitimate file to a back sub-folder. It is known to attempt to terminate security software, and the Trojan downloads a backdoor onto the computer, allowing the attacker to further compromise the computer. It is also known to modify the Windows registry.

Identification

During installation, the following files are created, and may be present on a compromised system.[2]

References

  1. 1 2 http://www.avira.com/en/threats/section/fulldetails/id_vir/2820/tr_dldr.agent.awf.14.html
  2. http://research.sunbelt-software.com/threatdisplay.aspx?name=Trojan-Downloader.Win32.Agent.awf&threatid=70517[]
This article is issued from Wikipedia - version of the 10/5/2016. The text is available under the Creative Commons Attribution/Share Alike but additional terms may apply for the media files.