Welcome to the Virus Encyclopedia of Panda Security.
It downloads a rootkit in order to hide itself in the system and a rogue antivirus which alerts users of unexisiting threats in the computer. It does not spread automatically using its own means.
|First detected on:||July 14, 2008|
|Detection updated on:||July 21, 2008|
|Yes, using TruPrevent Technologies
Agent.JEN is a Trojan that establishes connections with Russian domains in order to download malware to the affected computer.
It downloads a rootkit which hides the presence of the Trojan in the computer and a rogue antivirus which alerts users of unexisting threats in the computer.
Agent.JEN does not spread automatically using its own means. It needs an attacking user's intervention in order to reach the affected computer.
Agent.JEN is easy to recognize, as it is being distributed in email messages that pass themselves off as the UPS company and that inform of the impossibility to deliver a postal package:
This message includes an attached file with a ZIP extension. This file contains an executable called UPS_INVOICE.EXE which has the icon of a Word document in order to go unnoticed and deceive users: