Backdoor.Korplug.B
Threat Scorecard
EnigmaSoft Threat Scorecard
EnigmaSoft Threat Scorecards are assessment reports for different malware threats which have been collected and analyzed by our research team. EnigmaSoft Threat Scorecards evaluate and rank threats using several metrics including real-world and potential risk factors, trends, frequency, prevalence, and persistence. EnigmaSoft Threat Scorecards are updated regularly based on our research data and metrics and are useful for a wide range of computer users, from end users seeking solutions to remove malware from their systems to security experts analyzing threats.
EnigmaSoft Threat Scorecards display a variety of useful information, including:
Ranking: The ranking of a particular threat in EnigmaSoft’s Threat Database.
Severity Level: The determined severity level of an object, represented numerically, based on our risk modeling process and research, as explained in our Threat Assessment Criteria.
Infected Computers: The number of confirmed and suspected cases of a particular threat detected on infected computers as reported by SpyHunter.
See also Threat Assessment Criteria.
| Threat Level: | 80 % (High) |
| Infected Computers: | 15 |
| First Seen: | December 11, 2013 |
| Last Seen: | December 8, 2020 |
| OS(es) Affected: | Windows |
Backdoor.Korplug.B is a backdoor Trojan that may be used to steal information from an infected computer or install other threats on the affected computer. Backdoor.Korplug.B opens a backdoor on the victim's computer. A backdoor is an expression used to mention an unauthorized opening in the affected computer's security. This unauthorized opening may be used by criminals to install other threats, control the affected computer from a remote location or steal data from the infected computer. If you have a reason to think that your machine has become infected with Backdoor.Korplug.B, security researchers strongly suggest the aid of a powerful anti-malware tool to prevent further damage to your machine or the endangerment of your personal data.
Table of Contents
How Backdoor.Korplug.B is Disseminated
Backdoor.Korplug.B has been active since November of 2013. Backdoor.Korplug.B is a Trojan infection, meaning that Backdoor.Korplug.B usually cannot spread on its own (unlike viruses or worms). Trojans like Backdoor.Korplug.B usually require another threat or social engineering tactics to distribute from one PC to another. The following are common ways in which Backdoor.Korplug.B and similar backdoor Trojans may disseminate from one PC to another:
- One of the most common ways in which Backdoor.Korplug.B is spread is through the use of social engineering techniques Criminals may try to convince you that the file containing Backdoor.Korplug.B is actually a beneficial file containing something that you need. A common way of doing this is by trying to convince you to view a video and claiming that the Backdoor.Korplug.B file is actually an update for Adobe Flash or for your media player.
- Backdoor.Korplug.B may also spread using email or instant messaging spam. These types of unreliable messages may contain an attached file or embedded link that leads the victim to a website where Backdoor.Korplug.B is installed or is the threat itself.
- There have been an increase in attack websites and the use of threat kits to deliver threats similar to Backdoor.Korplug.B. These may attack computer users by taking advantage of poorly protected websites. Criminals may insert corrupted scripts into these websites that redirect visitors to attack websites designed to install Trojan infections onto the computers of their visitors.
File System Details
| # | File Name |
Detections
Detections: The number of confirmed and suspected cases of a particular threat detected on
infected computers as reported by SpyHunter.
|
|---|---|---|
| 1. | %AllUsersProfile%\Mozilla\WINMM.dll | |
| 2. | %AllUsersProfile%\Mozilla\WINMM.dll.rom | |
| 3. | %AllUsersProfile%\Mozilla\Trend2013.dat |
Registry Details
URLs
Backdoor.Korplug.B may call the following URLs:
| Dns.tendgroup.com |
| Smtp.tendgroup.com |
| Tendgroup.com |
Submit Comment
Please DO NOT use this comment system for support or billing questions. For SpyHunter technical support requests, please contact our technical support team directly by opening a customer support ticket via your SpyHunter. For billing issues, please refer to our "Billing Questions or Problems?" page. For general inquiries (complaints, legal, press, marketing, copyright), visit our "Inquiries and Feedback" page.