BKDR_PLUGX.YJK
April 21, 2016
ALIASES:
a variant of Win32/Korplug.FI trojan (NOD32), Backdoor.Win32.Gulpix.aag (Kaspersky)
PLATFORM:
Windows
OVERALL RISK RATING:
DAMAGE POTENTIAL:
DISTRIBUTION POTENTIAL:
REPORTED INFECTION:
INFORMATION EXPOSURE:
Threat Type: Backdoor
Destructiveness: No
Encrypted:
In the wild: Yes
OVERVIEW
This backdoor arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. It arrives as a component bundled with malware/grayware packages.
It requires its main component to successfully perform its intended routine.
TECHNICAL DETAILS
File Type:
DLL
Initial Samples Received Date:
24 Mar 2016
Arrival Details
This backdoor arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites.
It arrives as a component bundled with malware/grayware packages.
Other Details
This backdoor requires its main component to successfully perform its intended routine.