Rootkit.Win32.EquationDrug

Detect Date 08/04/2018
Class Rootkit
Platform Win32
Description

This family consists of malicious objects that use malicious software modules from Shadow Brokers’ leaks or are created on the basis of these modules. These objects are loaded into system memory and conceal the presence of other malware.

Geographical distribution of attacks by Rootkit.Win32.EquationDrug

 

Geographical distribution of attacks during the period from 04.08.17 – 04.08.18

Top 10 countries with most attacked users (% of total attacks)

Country % of users attacked worldwide*
1 Vietnam 40.45
2 Russian Federation 18.13
3 India 7.54
4 Indonesia 3.96
5 Brazil 2.74
6 China 2.56
7 Bangladesh 2.06
8 Thailand 1.80
9 Iran, Iislamic Republic of 1.76
10 Ukraine 1.34

*Percentage among all unique Kaspersky Lab users worldwide attacked by this malware