BackDoor-DKI.gen.ak or Win-Trojan/Poison.363419 Removal Report

BackDoor-DKI.gen.ak

BackDoor-DKI.gen.ak Description

BackDoor-DKI.gen.ak is a malicious backdoor Trojan. BackDoor-DKI.gen.ak is able to run in the background of a system and give remote attackers access to the compromised PC. BackDoor-DKI.gen.ak can spread by exploiting local network shares. Once executed, BackDoor-DKI.gen.ak will join a predefined IRC server and channel in order to participate in DDoS attacks.

Technical Information

File System Details

BackDoor-DKI.gen.ak creates the following file(s):

Expand All | Collapse All

#	File Name	Detection Count
1	%AppData%\Xenocode\Sandbox\1.0.0.0\1430.12.21T22.24\Virtual\STUBEXE\@SYSTEM@\server.exe	N/A
Name: %AppData%\Xenocode\Sandbox\1.0.0.0\1430.12.21T22.24\Virtual\STUBEXE\@SYSTEM@\server.exe Type: Executable File
2	%AppData%\Xenocode\Sandbox\1.0.0.0\1430.12.21T22.24\Virtual\XRegistry.bin	N/A
Name: %AppData%\Xenocode\Sandbox\1.0.0.0\1430.12.21T22.24\Virtual\XRegistry.bin Type: Binary File
3	%System%\cam\klog.dat	N/A
Name: %System%\cam\klog.dat Type: Data file

Registry Details

BackDoor-DKI.gen.ak creates the following registry entry or registry entries:

RegistryKey

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{9B71D88C-C598-4935-C5D1-43AA4DB90836}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Bifrost]

[HKEY_CURRENT_USER\Software\Bifrost]

By JubileeX in Backdoors

Translate To:

English

BackDoor-DKI.gen.ak

BackDoor-DKI.gen.ak Description

Technical Information

File System Details

Registry Details

Your comment is awaiting moderation.

Please verify that you are not a robot.

Leave a Reply

Popular Malware

Popular Trojans

Popular Ransomware

Popular Issues

Popular How-Tos

Products

Malware Research

Company

Legal