Threat Database Rootkits Rootkit.Order


Rootkit.Order is a dangerous rootkit program that can be dropped by other malware or obtained when visiting malicious websites. When inside a PC, Rootkit.Order targets files with filenames that include the word "order" in them. Rootkit.Order is usually found attacking financial institutions and stealing confidential information that can be utilized for malicious activities such as fraud. Rootkit.Order may also attempt to contact a remote server and download harmful files onto a PC.


5 security vendors flagged this file as malicious.

Anti-Virus Software Detection
- packed with UPack
- Packed/Upack
- Mal/EncPk-BW
- New Malware.n
- Trojan.Win32.Vilsel.ogc

File System Details

Rootkit.Order may create the following file(s):
# File Name Detections
1. c:\del1bf05.bat
2. %System%\kb817221931.dll
3. %System%\drivers\bmtpws31.dat
4. %System%\imm32.dll.bak
5. %System%\wsconfig.db


Most Viewed