NetWiredRC
Posted: December 13, 2013
Threat Metric
The following fields listed on the Threat Meter containing a specific value, are explained in detail below:
Threat Level: The threat level scale goes from 1 to 10 where 10 is the highest level of severity and 1 is the lowest level of severity. Each specific level is relative to the threat's consistent assessed behaviors collected from SpyHunter's risk assessment model.
Detection Count: The collective number of confirmed and suspected cases of a particular malware threat. The detection count is calculated from infected PCs retrieved from diagnostic and scan log reports generated by SpyHunter.
Volume Count: Similar to the detection count, the Volume Count is specifically based on the number of confirmed and suspected threats infecting systems on a daily basis. High volume counts usually represent a popular threat but may or may not have infected a large number of systems. High detection count threats could lay dormant and have a low volume count. Criteria for Volume Count is relative to a daily detection count.
Trend Path: The Trend Path, utilizing an up arrow, down arrow or equal symbol, represents the level of recent movement of a particular threat. Up arrows represent an increase, down arrows represent a decline and the equal symbol represent no change to a threat's recent movement.
% Impact (Last 7 Days): This demonstrates a 7-day period change in the frequency of a malware threat infecting PCs. The percentage impact correlates directly to the current Trend Path to determine a rise or decline in the percentage.
| Threat Level: | 9/10 |
|---|---|
| Infected PCs: | 9 |
| First Seen: | December 13, 2013 |
|---|---|
| Last Seen: | March 12, 2020 |
| OS(es) Affected: | Windows |
NetWiredRC is a variant of the Kazy Trojan, a Trojan that frequently is implicated in the theft confidential login information. The NetWiredRC version of Kazy seems to be targeting BitCoin users with a website that promotes its installation file as a fraudulent BitCoin market-monitoring utility. The NetWiredRC, like all RATs and backdoor Trojans, is classified as a prospective high-level threat to your computer, and malware experts emphasize that any failure to delete NetWiredRC with strong anti-malware solutions may result in the widespread theft of personal information, including passwords, answers to security questions, e-mail addresses and login names.
The Hidden Price You Pay for Speculating in Digital Currency
'Real-world' currency systems, such as banking institutions, often are the targets of Trojan attacks that try to steal user information through the sophisticated methods of threats like Trojan Zeus, Kazy, Gozi and Citadel. NetWiredRC, an apparent offshoot of Kazy, now is aimed at compromising digital currency users, too, with a website that's designed explicitly to lure in BitCoin speculators. The website, bitcoin-alarm.net, doesn't trigger any obvious alarm bells in its format and appears to offer a BitCoin market-monitoring app, called BitCoin Alarm, as a download. Unfortunately, malware experts have verified that this EXE file is an AutoIT-based Trojan dropper, Trojan.Win32.Agent.aczzd, which installs the backdoor Trojan NetWiredRC.
For code divers, NetWiredRC's installation includes some significant signs of its threatening intentions, such as a hibernation function that's triggered whenever NetWiredRC detects certain popular brands of anti-virus software. NetWiredRC also appears to include functions for disabling other security-related applications. Since this is a recently-emerged PC threat, the unreliable website hosting this file has not yet been flagged as threatening by a large number of unsafe domain-blacklisting organizations, although malware researchers are happy to find that the process for industry-wide blacklisting is well underway.
Cutting the Hidden Wire that NetWiredRC Sends Between Your Wallet and Criminals
Like any remix of the Kazy Trojan, NetWiredRC includes general spyware-related functions that may let NetWiredRC steal account login information. Passwords, account names and any other related information should be thought of as potentially compromised once NetWiredRC is confirmed to be installed. Of course, confirming that installation may not be a straightforward process if NetWiredRC is blocking the security products you'd use for that purpose.
To remove NetWiredRC without its being able to impede your efforts in any meaningful way, malware researchers would encourage switching your PC to Safe Mode, or even rebooting through a peripheral device if it's practical. This will help disable NetWiredRC and any other threats. After you've achieved a safe system-scanning environment, deleting NetWiredRC should be as simple as running any updated anti-malware program. NetWiredRC's removal, it must be stressed, doesn't reverse any compromises of your personal information, which is why a hasty response to NetWiredRC is important.
Leave a Reply
Please note that we are not able to assist with billing and support issues regarding SpyHunter or other products. If you're having issues with SpyHunter, please get in touch with SpyHunter customer support through your SpyHunter . If you have SpyHunter billing questions, we recommend you check the Billing FAQ. For general suggestions or feedback, contact us.