BKDR_WEBSHELL.KM
March 09, 2016
PLATFORM:
Windows
OVERALL RISK RATING:
DAMAGE POTENTIAL:
DISTRIBUTION POTENTIAL:
REPORTED INFECTION:
INFORMATION EXPOSURE:
Threat Type: Backdoor
Destructiveness: No
Encrypted:
In the wild: Yes
OVERVIEW
This backdoor may arrive bundled with malware packages as a malware component. It may be hosted on a website and run when a user accesses the said website.
It requires its main component to successfully perform its intended routine.
TECHNICAL DETAILS
File Size:
120,759 bytes
File Type:
Java
Initial Samples Received Date:
08 Mar 2016
Arrival Details
This backdoor may arrive bundled with malware packages as a malware component.
It may be hosted on a website and run when a user accesses the said website.
Other Details
This backdoor requires its main component to successfully perform its intended routine.
NOTES:
This backdoor may exhibit malicious routines depending on how the user uses the options:
- XP_CmdShell
- Sp_Oacreate
- Xp_Regwrite
- SQL Server Agent