Search
Keyword: bkdr_swami.tib
This backdoor arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. It executes the files it drops, prompting the affected
This backdoor may be dropped by other malware. It does not have any propagation routine. It executes commands from a remote malicious user, effectively compromising the affected system. However, as
This backdoor arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. However, as of this writing, the said sites are
This backdoor arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. It may be dropped by other malware. It executes
This backdoor may be dropped by other malware. It executes commands from a remote malicious user, effectively compromising the affected system. It executes the downloaded files. As a result,
This backdoor may be dropped by other malware. Arrival Details This backdoor may be dropped by the following malware: TSPY_INJECTO.KRS Installation This backdoor drops and executes the following
This backdoor arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. Arrival Details This backdoor arrives on a system as a
When executed, this backdoor drops a .DLL file onto the Windows system folder, and then injects it to a certain system process. It also creates a registry key in order to execute the said .DLL.
This backdoor deletes itself after execution. Installation This backdoor drops the following component file(s): %System%\spool\prtprocs\w32x86\{Random File Name}.dll - also detected as BKDR_TDSS.SMD
This backdoor connects to a website to send and receive information. Backdoor Routine This backdoor connects to the following websites to send and receive information: {BLOCKED}e.googleupdate.hk
This backdoor may be dropped by other malware. Arrival Details This backdoor may be dropped by the following malware: TROJ_TARODROP.M Installation This backdoor drops the following copies of itself
This backdoor may be downloaded by other malware/grayware/spyware from remote sites. It arrives as a component bundled with malware/grayware packages. It may be dropped by other malware. It is
This malware has received attention from independent media sources and/or other security firms. This malware is a part of a package that generate BitCoins and performs DDOS attacks against targeted
This backdoor may be downloaded by other malware/grayware from remote sites. It executes commands from a remote malicious user, effectively compromising the affected system. Arrival Details This
This backdoor connects to a certain site. Depending on the server's reply it may perform certain commands. This backdoor may be dropped by other malware. It does not have any propagation routine. It
This backdoor spoofs Trend Micro and <i>Skype</i> by using URLs purportedly related to the said brand names. When executed, BKDR_FARFLI.XLS connects to malicious URLs to send sensitive
This backdoor disguises as a revolutionary document in order to lure Syrian activists into downloading and executing the malware. To get a one-glance comprehensive view of the behavior of this
This backdoor may be dropped by other malware. It opens a hidden Internet Explorer window. It executes commands from a remote malicious user, effectively compromising the affected system. It deletes
This backdoor arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. It is a command line program that may be used to
This backdoor arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. It connects to a website to send and receive