HKTL_EXCMD

 Analysis by: Jimelle Monteser

 ALIASES:

App/XCmdSvc-A (Webroot), Trojan horse Agent2.CMPA (AVG), RemoteAdmin.Win32.RemoteExec (Ikarus), RemoteAdmin.Win32.RemoteExec.ax (Kaspersky)

 PLATFORM:

Windows 2000, Windows Server 2003, Windows XP (32-bit, 64-bit), Windows Vista (32-bit, 64-bit), Windows 7 (32-bit, 64-bit)

 OVERALL RISK RATING:
 DAMAGE POTENTIAL:
 DISTRIBUTION POTENTIAL:
 REPORTED INFECTION:
 INFORMATION EXPOSURE:

  • Threat Type: Hacking Tool

  • Destructiveness: No

  • Encrypted:

  • In the wild: Yes

  OVERVIEW

This hacking tool may be manually installed by a user.

  TECHNICAL DETAILS

File Size:

56,320 bytes

File Type:

EXE

Memory Resident:

Yes

Initial Samples Received Date:

12 May 2011

Arrival Details

This hacking tool may be manually installed by a user.

NOTES:

This hacking tool is used to execute applications on remote systems. It requires certain parameters to perform its intended routine.