TROJ_PIDIEF.EGQ
Threat Scorecard
EnigmaSoft Threat Scorecard
EnigmaSoft Threat Scorecards are assessment reports for different malware threats which have been collected and analyzed by our research team. EnigmaSoft Threat Scorecards evaluate and rank threats using several metrics including real-world and potential risk factors, trends, frequency, prevalence, and persistence. EnigmaSoft Threat Scorecards are updated regularly based on our research data and metrics and are useful for a wide range of computer users, from end users seeking solutions to remove malware from their systems to security experts analyzing threats.
EnigmaSoft Threat Scorecards display a variety of useful information, including:
Ranking: The ranking of a particular threat in EnigmaSoft’s Threat Database.
Severity Level: The determined severity level of an object, represented numerically, based on our risk modeling process and research, as explained in our Threat Assessment Criteria.
Infected Computers: The number of confirmed and suspected cases of a particular threat detected on infected computers as reported by SpyHunter.
See also Threat Assessment Criteria.
| Threat Level: | 90 % (High) |
| Infected Computers: | 15 |
| First Seen: | December 21, 2011 |
| Last Seen: | November 18, 2022 |
| OS(es) Affected: | Windows |
TROJ_PIDIEF.EGQ is a malware infection that has been associated with a scam email campaign that takes advantage of the decease of the North Korean dictator Kim Jong II. TROJ_PIDIEF.EGQ works by inspecting the victim's computer system in order to detect the version of Adobe Reader that is being used by the victim. If this version is prior to Adobe Reader 9.4, TROJ_PIDIEF.EGQ will exploit well-known vulnerabilities of this application in order to drop three malicious files onto the victim's computer system. TROJ_PIDIEF.EGQ is hidden within a PDF file which actually contains some information about Kim Jong II. ESG security researchers strongly recommend against opening unsolicited email attachments of any kind. While many computer users may think that a PDF file is safe to open, these malicious PDF files have been some of the main malware attackers in the last quarter of 2011. They exploit a vulnerability in Adobe System's Acrobat Reader 9 which allows criminals to drop and execute files onto the victim's computer system. This has resulted in scam email campaigns distributing PDF files from a variety of sources.
Why TROJ_PIDIEF.EGQ Takes Advantage of Kim Jong II's Death
Whenever a prominent celebrity or political figure dies, PC security researchers usually identify malware attacks that are designed to take advantage of the trending news. This phenomenon occurred with the recent deaths of Steve Jobs, Amy Winehouse and Muammar Gadaffi, and the death of the famed North Korean dictator Kim Jong II is no exception. The attached file that contains TROJ_PIDIEF.EGQ displays a picture of Kim Jong II and some basic information about the infamous dictator. There are several versions of this spam attack, which will typically include PDF files with file names that mention Kim Jong II in some way. These scams may also include malicious files disguised as DOC files or other kinds of common scam email menaces. In most cases, TROJ_PIDIEF.EGQ will install a malicious file which will then access a remote server and download and install a variant of the Zeus Trojan. To prevent a TROJ_PIDIEF.EGQ infection, ESG security researchers strongly recommend against attempting to get your news from unsolicited email. If you want to keep your system safe, stick to trusted news outlets and websites to get the latest information and trending news.
Submit Comment
Please DO NOT use this comment system for support or billing questions. For SpyHunter technical support requests, please contact our technical support team directly by opening a customer support ticket via your SpyHunter. For billing issues, please refer to our "Billing Questions or Problems?" page. For general inquiries (complaints, legal, press, marketing, copyright), visit our "Inquiries and Feedback" page.