Cridex-B
Threat Scorecard
EnigmaSoft Threat Scorecard
EnigmaSoft Threat Scorecards are assessment reports for different malware threats which have been collected and analyzed by our research team. EnigmaSoft Threat Scorecards evaluate and rank threats using several metrics including real-world and potential risk factors, trends, frequency, prevalence, and persistence. EnigmaSoft Threat Scorecards are updated regularly based on our research data and metrics and are useful for a wide range of computer users, from end users seeking solutions to remove malware from their systems to security experts analyzing threats.
EnigmaSoft Threat Scorecards display a variety of useful information, including:
Ranking: The ranking of a particular threat in EnigmaSoft’s Threat Database.
Severity Level: The determined severity level of an object, represented numerically, based on our risk modeling process and research, as explained in our Threat Assessment Criteria.
Infected Computers: The number of confirmed and suspected cases of a particular threat detected on infected computers as reported by SpyHunter.
See also Threat Assessment Criteria.
Threat Level: | 80 % (High) |
Infected Computers: | 19 |
First Seen: | October 1, 2011 |
Last Seen: | November 16, 2022 |
OS(es) Affected: | Windows |
Cridex-B is a worm, a kind of malware infection that has the ability to disseminate from one infected computer to a healthy computer on its own. Worms like Cridex-B tend to have several tactics in order to infect new victims. The most common way in which Cridex-B spreads from one computer to another is by copying itself to any drives Cridex-B finds, especially removable drives, and to any folders shared on a network. Cridex-B has also been known to spread through corrupted email attachments and instant messages. According to ESG security researchers, Cridex-B, which was first identified in 2011, is a severe threat to any computer's security.
Table of Contents
How Cridex-B Attacks Your Computer System
Basically, Cridex-B's executable file causes Cridex-B to make copies of itself in various folders on the victim's computer system. Then, this malware threat makes a change to the Windows registry that ensures that each time Windows starts up, Cridex-B's executable file runs automatically. Cridex-B has the capacity to inject code into any running file processes, allowing Cridex-B to hide from view and detection. As part of its payload, Cridex-B causes Internet Explorer to connect to the Internet without the victim's knowledge. In this way, Cridex-B can then connect to a Russian server in order to download additional malware, receive instructions and disclose the victim's activity and private data.
Cridex-B Was Linked to an Attack on WordPress Websites on January 31st, 2012
According to malware analysts, Cridex-B has been linked to an attack that exploits a vulnerability found in version 3.2.1 of WordPress. Basically, infected websites try to exploit various simultaneous vulnerabilities on the victim's computer system in order to cause them to becoming infected with Cridex-B. In these attacks, Cridex-B is used in order to steal the victim's important information, such as online passwords, online banking data and credit card information. Most victims of this malware attack will initially be targeted via a spam email containing a malicious embedded link. This malicious email will typically ask for an invoice of some sort, prompting the curious computer user to click on the link. The link takes the victim to one of the compromised WordPress websites which then, attacking vulnerabilities in Flash and in various web browsers, attempts to inject Cridex-B into the victim's computer system.
File System Details
# | File Name |
Detections
Detections: The number of confirmed and suspected cases of a particular threat detected on
infected computers as reported by SpyHunter.
|
---|---|---|
1. |
C:\Documents and Settings\ |
|
2. |
C:\Documents and Settings\ |
Submit Comment
Please DO NOT use this comment system for support or billing questions. For SpyHunter technical support requests, please contact our technical support team directly by opening a customer support ticket via your SpyHunter. For billing issues, please refer to our "Billing Questions or Problems?" page. For general inquiries (complaints, legal, press, marketing, copyright), visit our "Inquiries and Feedback" page.