Solutions for:
Home Products
Small Business
Medium Business
Enterprise
Vulnerabilities Threats
Home Threats Worm VBS

Worm.VBS.Agent.fm

Update Date
12/16/2023

Class: Worm

Worms spread on computer networks via network resources. Unlike Net-Worms, a user must launch a Worm in order for it to be activated. This kind of worm searches remote computer networks and copies itself to directories that are read/write accessible (if it finds any). Furthermore, these worms either use built-in operating system functions to search for accessible network directories and/or they randomly search for computers on the Internet, connect to them, and attempt to gain full access to the disks of these computers. This category also covers those worms which, for one reason or another, do not fit into any of the other categories defined above (e.g. worms for mobile devices).

Read more

Platform: VBS

Visual Basic Scripting Edition (VBScript) is a scripting language interpreted by Windows Script Host. VBScript is widely used to create scripts on Microsoft Windows operating systems.

Family: Trojan.Win64.Agent

No family description

Examples

28AC5FBC335F8D4111A298793C31A6F0
4836C82D6DBA9BA2C3D88B3A0235DFB1
686A7ED0DB1C245411FEB0059377786F
590F5CB342DDA531B0D4E197DFDE99E7
780A94FDEE697943D6D3AD32AABD83ED

Tactics and Techniques: Mitre*

TA0007
Discovery

An adversary may attempt to get detailed information about the operating system and hardware, including version, patches, hotfixes, service packs, and architecture. Adversaries may use the information from System Information Discovery during automated discovery to shape follow-on behaviors, including whether or not the adversary fully infects the target and/or attempts specific actions.


T1082
System Information Discovery

An adversary may attempt to get detailed information about the operating system and hardware, including version, patches, hotfixes, service packs, and architecture. Adversaries may use the information from System Information Discovery during automated discovery to shape follow-on behaviors, including whether or not the adversary fully infects the target and/or attempts specific actions.


* © 2025 The MITRE Corporation. This work is reproduced and distributed with the permission of The MITRE Corporation.

Kaspersky Next
Let’s go Next: redefine your business’s cybersecurity
Learn more
New Kaspersky!
Your digital life deserves complete protection!
Learn more
Related articles
18 February 2025
Securelist
StaryDobry ruins New Year’s Eve, delivering miner instead of presents
05 February 2025
Securelist
Investors, Trump and the Illuminati: What the “Nigerian prince” scams became in 2024
05 February 2025
Securelist
Take my money: OCR crypto stealers in Google Play and App Store
31 January 2025
Securelist
One policy to rule them all
30 January 2025
Securelist
No need to RSVP: a closer look at the Tria stealer campaign
29 January 2025
Securelist
Threat predictions for industrial enterprises 2025
Found an inaccuracy in the description of this vulnerability?
If you found a new Threat or Vulnerability, please, let us know by email:
newvirus@kaspersky.com
Found a new Threat or Vulnerability?
If you found a new Threat or Vulnerability, please, let us know by email:
newvirus@kaspersky.com
Solutions for
Home Products
Small Business
Medium Business
Enterprise
Select language
Sorting
Threat
Confirm changes?
Your message has been sent successfully.