Search
Keyword: bkdr_bn.311.eds
This backdoor arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. It injects its dropped file/component to specific
This backdoor may be dropped by other malware. It executes commands from a remote malicious user, effectively compromising the affected system. It connects to a website to send and receive
This backdoor arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. It connects to a website to send and receive
This backdoor may arrive bundled with malware packages as a malware component. It exports functions used by other malware. It deletes the initially executed copy of itself. Arrival Details This
This backdoor arrives as an attachment to email messages spammed by other malware/grayware or malicious users. It arrives on a system as a file dropped by other malware or as a file downloaded
This backdoor may be dropped by other malware. It executes commands from a remote malicious user, effectively compromising the affected system. It connects to a website to send and receive
This backdoor arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. Arrival Details This backdoor arrives on a system as a
This backdoor arrives as a file that exports the functions of other malware/grayware. It arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when
This backdoor arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. It does not have any propagation routine. It opens a
This backdoor arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. However, as of this writing, the said sites are
This backdoor may be dropped by other malware. It connects to a website to send and receive information. It executes the downloaded files. As a result, malicious routines of the downloaded files are
This backdoor attempts to connect to certain servers saved in the registry. Once connected, it gathers information from the affected system by executing commands in CMD. The results are saved in the
This backdoor deletes its dropper component after the DLL is installed as service. Its service name is randomly selected, based on the result of a certain registry query. Before continuing to
This backdoor arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. It deletes itself after execution. Arrival Details
This backdoor connects to a certain IP address. Once connection is established, it may perform certain routines depending on the received command. This backdoor may be dropped by other malware. It
This backdoor may be downloaded by other malware/grayware/spyware from remote sites. It may be dropped by other malware. It executes the dropped file(s). As a result, malicious routines of the
This backdoor may be dropped by other malware. It connects to a website to send and receive information. Arrival Details This backdoor may be dropped by the following malware: TROJ_ARTIEF.ZIGS
This backdoor may connect to a certain website to inform a remote user of its installation and to send information such as IP address, user name, and OS information. This backdoor may be dropped by
This backdoor may be downloaded by other malware/grayware/spyware from remote sites. It may be dropped by other malware. It arrives as a component bundled with malware/grayware packages. It may be
This backdoor gathers certain system information. It connects to C&C servers to send and receive information. It downloads and executes other files from certain URLs. This backdoor arrives on a