Backdoor.Sosork is a backdoor Trojan that opens a back door on the targeted PC. Backdoor.Sosork is usually downloaded by an infected RTF document exploiting a vulnerability, such as the Microsoft Windows Common Controls ActiveX Control Remote Code Execution Vulnerability. While being run, Backdoor.Sosork creates harmful files on the affected computer system. Backdoor.Sosork connects to a command-and-control (C&C) server. Backdoor.Sosork harversts the information such as CPU, memory and computer name and transfers it to the C&C server. Backdoor.Sosork then permits remote cybercriminals to accomplish damaging activities on the compromised PC such as execute files, steal files and explore the file system.
File System Details
Detections: The number of confirmed and suspected cases of a particular threat detected on infected computers as reported by SpyHunter.