Agent.AWF

AWF (or Agent.AWF) is a malicious Trojan downloader affecting the Microsoft Windows operating system.^[1]^[2]^[3]

Methods of infection

This Trojan is considered obsolete, and there are no known variants in the wild.^{[citation needed]}

Affected operating systems

The following operating systems are known to be affected.^[1]

Operation

Agent.AWF displays virus activity in that it replaces files on a user's computer with a copy of itself, and moves the original, legitimate file to a back sub-folder. It is known to attempt to terminate security software, and the Trojan downloads a backdoor onto the computer, allowing the attacker to further compromise the computer. It is also known to modify the Windows registry.^{[citation needed]} Agent.AWF does not spread automatically: it needs an attacking user's intervention in order to reach the affected computer. The means of transmission used include, among others, floppy disks, CD-ROMs, emails with attached files, Internet downloads, FTP, IRC channels, peer-to-peer (P2P) file sharing networks, etc.^[1]

Identification

During installation, the following files are created, and may be present on a compromised system.^{[citation needed]}

abc123.pid
svcipa.exe
nod32kui.exe

References

^ ^a ^b ^c "Agent.AWF - at a glance". pandasecurity.com. Retrieved 8 January 2017.
^ "Trojan-Downloader.Win32.Agent.awf Information and Removal". sunbeltsecurity.com. 5 October 2006. Retrieved 8 January 2017.
^ "E-Book Downloader". scribddownloader.com. 5 October 2024. Retrieved 8 January 2024.

This malware-related article is a stub. You can help Wikipedia by expanding it.

[panda-1] "Agent.AWF - at a glance". pandasecurity.com. Retrieved 8 January 2017.

[2] "Trojan-Downloader.Win32.Agent.awf Information and Removal". sunbeltsecurity.com. 5 October 2006. Retrieved 8 January 2017.

[3] "E-Book Downloader". scribddownloader.com. 5 October 2024. Retrieved 8 January 2024.

[1]

[2]

[3]