We're gradually updating threat actor names in our reports to align with the new weather-themed taxonomy. Learn about Microsoft threat actor names
TrojanDropper:Win32/Rootkitdrv.AG
Detected by Microsoft Defender Antivirus
Aliases: Trojan-Downloader.Win32.Agent.bwr (Kaspersky) Generic Downloader.z (McAfee) W32/Agent.BUMN (Norman) Troj/Agent-FXZ (Sophos) Trojan.Pandex (Symantec)
Summary
TrojanDropper:Win32/Rootkitdrv.AG is a Trojan downloader that can download and execute Trojans or unwanted software located on one or more remote Web sites. TrojanDropper:Win32/Rootkitdrv.AG may be seeded in a German language e-mail, with a subject line containing "PayPal E-TAN Software".
TrojanDownloader:Win32/Small may download and install additional malicious software, thus manual removal is not recommended. To detect and remove this Trojan and other malicious software that may have been installed, run a full-system scan with an up-to-date antivirus product such as the Microsoft Safety Scanner (http://go.microsoft.com/fwlink/?LinkId=212742). For more information, visit http://www.microsoft.com/athome/security/downloads/default.mspx
Follow us
