TROJ_PIDIEF.EGQ

Posted: December 21, 2011

Threat Metric

The Threat Meter is a malware assessment that SpywareRemove.com's research team is able to give every identifiable malware threat. Our Threat Meter includes several criteria based off of specific malware threats to value their severity, reach and volume. The Threat Meter is able to give you a numerical breakdown of each threat's initial Threat Level, Detection Count, Volume Count, Trend Path and Percentage Impact. The overall ranking of each threat in the Threat Meter is a basic breakdown of how all threats are ranked within our own extensive malware database. The scoring for each specific malware threat can be easily compared to other emerging threats to draw a contrast in its particular severity. The Threat Meter is a useful tool in the endeavor of seeking a solution to remove a threat or pursue additional analytical research for all types of computer users.

The following fields listed on the Threat Meter containing a specific value, are explained in detail below:

Threat Level: The threat level scale goes from 1 to 10 where 10 is the highest level of severity and 1 is the lowest level of severity. Each specific level is relative to the threat's consistent assessed behaviors collected from SpyHunter's risk assessment model.

Detection Count: The collective number of confirmed and suspected cases of a particular malware threat. The detection count is calculated from infected PCs retrieved from diagnostic and scan log reports generated by SpyHunter.

Volume Count: Similar to the detection count, the Volume Count is specifically based on the number of confirmed and suspected threats infecting systems on a daily basis. High volume counts usually represent a popular threat but may or may not have infected a large number of systems. High detection count threats could lay dormant and have a low volume count. Criteria for Volume Count is relative to a daily detection count.

Trend Path: The Trend Path, utilizing an up arrow, down arrow or equal symbol, represents the level of recent movement of a particular threat. Up arrows represent an increase, down arrows represent a decline and the equal symbol represent no change to a threat's recent movement.

% Impact (Last 7 Days): This demonstrates a 7-day period change in the frequency of a malware threat infecting PCs. The percentage impact correlates directly to the current Trend Path to determine a rise or decline in the percentage.

Threat Level:	9/10
Infected PCs:	35

First Seen:	December 21, 2011
Last Seen:	November 18, 2022
OS(es) Affected:	Windows

TROJ_PIDIEF.EGQ is a Trojan dropper that exploits weaknesses in Adobe software to execute malicious code and install other PC threats. Although TROJ_PIDIEF.EGQ's current distribution levels are noted to be low, SpywareRemove.com malware researchers have found an upsurge in TROJ_PIDIEF.EGQ attacks that use Kim Jong II-themed e-mail messages to infect new computers. As long as you delete TROJ_PIDIEF.EGQ's e-mail spam without opening the accompanying attachment, your PC should be safe from TROJ_PIDIEF.EGQ, although opening this seemingly-innocent PDF file does endanger your PC and necessitates that immediate removal of TROJ_PIDIEF.EGQ with your preference of anti-malware software.

TROJ_PIDIEF.EGQ – A Brief Snippet of Genuine News with a Trap Concealed Inside

TROJ_PIDIEF.EGQ e-mail messages use a similar propagation technique to TROJ_ARTIEF.AEB and BKDR_PCCLIEN.BQD – by pretending to offer relevant news about the demise of the North Korean dictator Kim Jong II. TROJ_PIDIEF.EGQ's own e-mail spam contains a brief blurb and a file attachment that even displays a photograph and article about Kim Jong II, although this is only to distract you from what else the PDF file is accomplishing behind the scenes. Simultaneously, TROJ_PIDIEF.EGQ takes advantage of two separate vulnerabilities in Adobe Acrobat to install a payload of other PC threats. These vulnerabilities, labeled CVE-2010-2883 and CVE-2011-0611, will use buffer overflows and object typing-issues to attack your PC through Adobe Reader, Acrobat or Flash Player. If you don't have any of these programs installed, TROJ_PIDIEF.EGQ should be unable to affect your PC, and its PDF file will, of course, fail to load.

SpywareRemove.com malware research team has found that e-mail messages that propagate TROJ_PIDIEF.EGQ are recognizable from the following (and surprisingly-minimalist, compared to many types of other e-mail hoaxes) content:

Subject: N Korean leader Kim Jong-II dies
[CNN]North Korean leader Kim Jong-II has died of a heart attack at the age of 69, state media have announced.

Sending TROJ_PIDIEF.EGQ the Way of Kim Jong II

If you've accidentally installed TROJ_PIDIEF.EGQ, SpywareRemove.com malware researchers recommend that you remove TROJ_PIDIEF.EGQ with a total scan of your system that can also catch other PC threats that TROJ_PIDIEF.EGQ is almost-certain to have installed as soon as its file was launched. Failure to remove TROJ_PIDIEF.EGQ is tantamount to allowing remote criminals to access and control your PC as they wish, with attacks limited only by the payload that TROJ_PIDIEF.EGQ is configured to install. These risks can include password theft, account break-ins, browser redirects and blocked security software.

If TROJ_PIDIEF.EGQ has simply arrived in your mailbox in the form of a file attachment that's linked to spam e-mail, you can delete its e-mail without fear that it can cause any harm until it's opened. Regardless of this, if your PC has a Flash Player, Flash codec package, Adobe Acrobat or Adobe Reader program, you should check to make sure that these programs are all up-to-date to eliminate the security flaws that TROJ_PIDIEF.EGQ exploits to accomplish its attacks.

TROJ_PIDIEF.EGQ

Threat Metric

TROJ_PIDIEF.EGQ – A Brief Snippet of Genuine News with a Trap Concealed Inside

Sending TROJ_PIDIEF.EGQ the Way of Kim Jong II

Leave a Reply