Threat Database Backdoors Backdoor.Win32.Bifrose.for


By LoneStar in Backdoors

Backdoor.Win32.Bifrose.for will secretly enter a system and connect to a remote IP address from which it will receive malicious commands. Backdoor.Win32.Bifrose.for will give a remote hacker access to a computer system, allowing him or her to execute malicious actions without the users knowledge or permission. Backdoor.Win32.Bifrose.for may also drop other malware onto a system and disable the Windows firewall.


4 security vendors flagged this file as malicious.

Anti-Virus Software Detection
- Win-Trojan/Agent.11776.KS
- Virus.Win32.Inject
- Mal/Inject-P

File System Details

Backdoor.Win32.Bifrose.for may create the following file(s):
# File Name Detections
1. %System%\Bifrost\server.exe
2. %System%\Bifrost\logg.dat

Registry Details

Backdoor.Win32.Bifrose.for may create the following registry entry or registry entries:
klg = 01
stubpath = "%System%\Bifrost\server.exe s"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{2C0E963F-CC76-7AA0-DF3C-53A15FC4D315}]
nck = ED 1B E6 27 B9 28 D6 32 74 C3 CD 74 FA 93 5B 67


Most Viewed