Security home

 

Home / malwarePDF  

SoftwareBundler:MSIL/Wizrem


First posted on 07 July 2017.
Source: Microsoft

Aliases :

There are no other names known for SoftwareBundler:MSIL/Wizrem.

Explanation :

Installation

This threat is usually downloaded by another application to be executed in the background. Most of its samples do not have a standard GUI or window. Its main purpose is to install and download other unwanted applications.

This threat's component files usually have the following file names:

  • WizzByPass.exe
  • WizzCaster.exe
  • WizzInstall.exe
  • WizzRemote.exe
  • WizzUpdater.exe


Related websites:
  • wizzcaster.com
  • wizzjsinjector.com
  • wizzservices.com
  • wizztrakys.com
  • wizzuniquify.com


Payload

Downloads and installs unwanted software and malware

This threat downloads and installs the following unwanted softrware without your knowledge or consent:
  • Adware:Win32/Eorezo
  • BrowserModifier:Win32/Sasquor


They come in the following application names:
  • Advanced Calendar
  • Caster
  • DPower
  • Max Driver Updater
  • OneSoftPerDay
  • qksee
  • SafeFinder
  • SnapDo
  • System Healer
  • Social2Search
  • trotux
  • Win Tune Pro
  • youndoo


This threat can also try to install malware such as Trojan:Win32/Xadupi, silently, without your knowledge nor consent.





Analysis by:

Zarestel Ferrer

Last update 07 July 2017

 

TOP

Malware :