Troj/Backdr-HG is a backdoor Trojan that is a component of a malware campaign realted to Microsoft. Troj/Backdr-HG is distributed via the spam ‘Important Changes to Microsoft Services agreement’ email that fool web users into opening and executing the infected file. The fake email seems to genuine and contains a new logo of Microsoft. The text of the unsolicited email is evidently genuine because an actual message of Microsoft was released recently. The deceptive email includes the attached executable file called ‘Microsoft-Services-Agreement.pdf.exe’ which, if opened and run, installs Troj/Backdr-HG on the compromised PC. If the targeted operating system is not configured to display full filenames, the attached .exe file might look as an Adobe PDF document.
How Can You Detect Troj/Backdr-HG?