HKTL_REMADM

 Analysis by: Michael Jay Villanueva

 ALIASES:

RemAdm-RemoteTaskManager (McAfee); RemoteAdmin.DJA (AVG); SPR/Remote.Rtmsc (Avira)

 PLATFORM:

Windows

 OVERALL RISK RATING:
 DAMAGE POTENTIAL:
 DISTRIBUTION POTENTIAL:
 REPORTED INFECTION:
 INFORMATION EXPOSURE:

  • Threat Type: Hacking Tool

  • Destructiveness: No

  • Encrypted:

  • In the wild: Yes

  TECHNICAL DETAILS

File Size:

72,192 bytes

File Type:

EXE

Initial Samples Received Date:

17 Nov 2010

Arrival Details

This malware arrives via the following means:

  • It may be manually executed by the user.
  • It may be executed by other programs.

Other Details

This hacking tool does the following:

  • It might possibly listens or sends data on open ports of LAN or Internet.
  • Commonly found on %System% or %Program Files% directories which might able to hide itself and manipulate other programs.

(Note: %Program Files% is the Program Files folder, where it usually is C:\Program Files on all Windows operating system versions; C:\Program Files (x86) for 32-bit applications running on Windows 64-bit operating systems.)