TrendLabs Malware Blog
Glossary
TrendWatch
TrendLabs Twitter
TROJ_AGENT.EVJ
Overview
Solution

Malware type: Trojan

Aliases: Trojan.Win32.Agent.dvo (Kaspersky), New Malware.bl !! (McAfee), TR/Crypt.XPACK.Gen (Avira),

In the wild: Yes

Destructive: No

Language: English

Platform: Windows 98, ME, NT, 2000, XP, Server 2003

Encrypted: No

Overall risk rating:

Reported infections:

Damage potential:

 Medium

Distribution potential:

 Low

Description: 

To get a one-glance comprehensive view of the behavior of this Trojan, refer to the Behavior Diagram shown below.

TROJ_AGENT.EVJ Behavior Diagram

Malware Overview

This Trojan arrives on a system as a downloaded file from the Internet by an unsuspecting user when visiting a certain malicious Web page, redirecting the said user to another Web site. It can also arrive as a dropped file of another malware.

It disables the Windows Task Manager and Registry Editor to prevent its easy detection and consequent removal from the affected system. It also modifies the home page of an affected system's Internet browser so that it points to the possibly malicious Web page http://www.{BLOCKED}cities.co.jp/thanatos18388 instead.

For additional information about this threat, see:
Solution
Technical Details

Description created: Sep. 19, 2006 3:45:15 AM GMT -0800

Search a new malware

Tell us how we did. Take our quick survey.