Backdoor.Snifula.D is a backdoor Trojan that opens a back door on the corrupted PC. When activated, Backdoor.Snifula.D may modify the particular registry entry in order to disable a security notification. Backdoor.Snifula.D may modify the particular registry entry in order to decrease Internet Explorer security settings. Backdoor.Snifula.D also creates a few registry entries. Backdoor.Snifula.D may contact the particular command and control (C&C) servers using a POST request on HTTP port 80. Backdoor.Snifula.D may then gain several commands. Backdoor.Snifula.D may then steal cookie information as well as distribute and execute files from a remote location. Backdoor.Snifula.D may also steal certificates from the victim and forward them to the C&C server. Backdoor.Snifula.D may then create an archive with the stolen certificates in the specific location.