Home / malware SoftwareBundler:MSIL/Wizrem
First posted on 07 July 2017.
Source: MicrosoftAliases :
There are no other names known for SoftwareBundler:MSIL/Wizrem.
Explanation :
Installation
This threat is usually downloaded by another application to be executed in the background. Most of its samples do not have a standard GUI or window. Its main purpose is to install and download other unwanted applications.
This threat's component files usually have the following file names:
- WizzByPass.exe
- WizzCaster.exe
- WizzInstall.exe
- WizzRemote.exe
- WizzUpdater.exe
Related websites:
- wizzcaster.com
- wizzjsinjector.com
- wizzservices.com
- wizztrakys.com
- wizzuniquify.com
Payload
Downloads and installs unwanted software and malware
This threat downloads and installs the following unwanted softrware without your knowledge or consent:
- Adware:Win32/Eorezo
- BrowserModifier:Win32/Sasquor
They come in the following application names:
- Advanced Calendar
- Caster
- DPower
- Max Driver Updater
- OneSoftPerDay
- qksee
- SafeFinder
- SnapDo
- System Healer
- Social2Search
- trotux
- Win Tune Pro
- youndoo
This threat can also try to install malware such as Trojan:Win32/Xadupi, silently, without your knowledge nor consent.
Analysis by:
Zarestel FerrerLast update 07 July 2017
