Backdoor:Win32/RDPopen

By Sumo3000 in Backdoors

Threat Scorecard

Ranking:	18,589
Threat Level:	60 % (Medium)
Infected Computers:	1,604

First Seen:	January 14, 2013
Last Seen:	February 10, 2024
OS(es) Affected:	Windows

Backdoor:Win32/RDPopen is a backdoor Trojan that enables a remote cybercriminal to obtain full access and control over the targeted PC. Backdoor:Win32/RDPopen creates the connection with an unidentified location in order to permit the cybercriminal to carry out various harmful activities on the affected PC. The connection can also be used by the cybercriminal to drop malevolent files resulting in more harm on the hacked computer. While being executed, Backdoor:Win32/RDPopen will drop a copy of harmful file under various folders and system directories. Backdoor:Win32/RDPopen then creates several registry entries to enable itself to run automatically every time you start Windows. Backdoor:Win32/RDPopen makes modifications to the Windows Registry to evade Windows Firewall to permit transmission over the existing network. Backdoor:Win32/RDPopen can steal personal information from the affected PC. Backdoor:Win32/RDPopen also restricts PC users from using some applications including security tools on the infected computer.

Table of Contents

Aliases

15 security vendors flagged this file as malicious.

Anti-Virus Software	Detection
Panda	Trj/Agent.MIZ
McAfee-GW-Edition	Heuristic.BehavesLike.Win32.ModifiedUPX.C
AntiVir	TR/Ransom.122880.12
Kaspersky	Trojan-Ransom.Win32.Blocker.ajhe
Fortinet	W32/Kryptik.AB!tr
AntiVir	TR/Cridex.EB.27
Kaspersky	Trojan-Dropper.Win32.Dapato.bnue
McAfee	PWS-Zbot.gen.yl
Fortinet	Adware/Bromngr
Ikarus	not-a-virus:AdWare.Win32.SuspectCRC
AhnLab-V3	Adware/Win32.Bromngr
DrWeb	Adware.BGuard.7
Sophos	BProtector
Panda	Trj/Genetic.gen
AVG	Generic_r.BRJ

SpyHunter Detects & Remove Backdoor:Win32/RDPopen

File System Details

Backdoor:Win32/RDPopen may create the following file(s):

Expand All | Collapse All

#	File Name	MD5	Detections Detections: The number of confirmed and suspected cases of a particular threat detected on infected computers as reported by SpyHunter.
1.	BrowserProtect.exe	3b2ddfabcc929174cd7212d11cef0e0e	798
Name: BrowserProtect.exe MD5: 3b2ddfabcc929174cd7212d11cef0e0e Size: 2.44 MB (2443800 bytes) Detections: 798 Type: Executable File Path: %ALLUSERSPROFILE%\BrowserProtect\2.5.986.67\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8} Group: Malware file Last Updated: November 16, 2023
2.	asr.exe	134e6943f8b7bab9eac7e9400965e50b	136
Name: asr.exe MD5: 134e6943f8b7bab9eac7e9400965e50b Size: 45.56 KB (45568 bytes) Detections: 136 Type: Executable File Path: G:\GAMES\Devil May Cry 3 - SE (Www.ApunKaGames.Net)\Devil May Cry 3 - SE (Www.ApunKaGames.Net)\Game\Mini-Image\asr.exe Group: Malware file Last Updated: February 10, 2024
3.	phxzbypky.exe	42d21a8f078cbc6d7d45b320a397b0be	50
Name: phxzbypky.exe MD5: 42d21a8f078cbc6d7d45b320a397b0be Size: 119.29 KB (119296 bytes) Detections: 50 Type: Executable File Path: %SystemDrive%\Users\<username>\AppData\Local Group: Malware file Last Updated: January 21, 2013
4.	windowsclock.exe	ff9dea1bb2bb76ae7dae2125e2911299	17
Name: windowsclock.exe MD5: ff9dea1bb2bb76ae7dae2125e2911299 Size: 1.02 MB (1024512 bytes) Detections: 17 Type: Executable File Path: %PROGRAMFILES%\kp Group: Malware file Last Updated: October 7, 2018
5.	zrzutek.exe	eef98640e0e6e4dcee9df1f9bf0677f1	16
Name: zrzutek.exe MD5: eef98640e0e6e4dcee9df1f9bf0677f1 Size: 208.89 KB (208896 bytes) Detections: 16 Type: Executable File Path: D:\Nowy folder\Zrzutek Group: Malware file Last Updated: December 29, 2019
6.	syshost.exe	45cf752aa71084771de80c42ecc050c3	8
Name: syshost.exe MD5: 45cf752aa71084771de80c42ecc050c3 Size: 131.07 KB (131072 bytes) Detections: 8 Type: Executable File Path: %LOCALAPPDATA%\{6339080E-6B2F-F9C6-E16F-23A6BFA06CC9} Group: Malware file Last Updated: January 21, 2013
7.	yrdwpb.exe	8ac38e96f2cd0305c53cdd8eb398fb3e	6
Name: yrdwpb.exe MD5: 8ac38e96f2cd0305c53cdd8eb398fb3e Size: 684.54 KB (684544 bytes) Detections: 6 Type: Executable File Path: %LOCALAPPDATA%\lollipop Group: Malware file Last Updated: January 21, 2013
8.	test.exe	c068764ba0e7e8974e9a2e9115a268f0	5
Name: test.exe MD5: c068764ba0e7e8974e9a2e9115a268f0 Size: 1.53 KB (1536 bytes) Detections: 5 Type: Executable File Path: %APPDATA% Group: Malware file Last Updated: January 16, 2013
9.	sopag_qhxbfwf.exe	ba6d089d9f19c95318b05032a55a2240	4
Name: sopag_qhxbfwf.exe MD5: ba6d089d9f19c95318b05032a55a2240 Size: 131.07 KB (131072 bytes) Detections: 4 Type: Executable File Path: %ALLUSERSPROFILE%\SOPAgent Group: Malware file Last Updated: January 16, 2013
10.	4EAJQ0M3V4.exe	73c0a0cc3ad07972717854d102c53e43	3
Name: 4EAJQ0M3V4.exe MD5: 73c0a0cc3ad07972717854d102c53e43 Size: 16.38 KB (16384 bytes) Detections: 3 Type: Executable File Path: %USERPROFILE%\Application Data Group: Malware file Last Updated: January 16, 2013
11.	TURegOpt.exe	1ef30cd92f4f0bf7a7eb40901f255f9e	2
Name: TURegOpt.exe MD5: 1ef30cd92f4f0bf7a7eb40901f255f9e Size: 66.56 KB (66560 bytes) Detections: 2 Type: Executable File Path: %LOCALAPPDATA%\Microsoft\Windows\4449 Group: Malware file Last Updated: January 21, 2013
12.	store.exe	17d5c6d7fbf018bff468d114311bb124	2
Name: store.exe MD5: 17d5c6d7fbf018bff468d114311bb124 Size: 158.2 KB (158208 bytes) Detections: 2 Type: Executable File Path: %APPDATA%\Apple Group: Malware file Last Updated: January 16, 2013
13.	dso4xWsdb.exe	3846383ab73e2ef79d9d2cd18f2a376c	2
Name: dso4xWsdb.exe MD5: 3846383ab73e2ef79d9d2cd18f2a376c Size: 156.67 KB (156672 bytes) Detections: 2 Type: Executable File Path: %USERPROFILE%\Start Menu\Programs\Startup Group: Malware file Last Updated: January 16, 2013
14.	WindowWizardT.exe	ecbac4721f2642d8e545ddf9f3b5b055	2
Name: WindowWizardT.exe MD5: ecbac4721f2642d8e545ddf9f3b5b055 Size: 217.08 KB (217088 bytes) Detections: 2 Type: Executable File Path: %PROGRAMFILES(x86)%\WindowWizard Group: Malware file Last Updated: January 16, 2013
15.	syshost.exe	32035abaad7594d5b05646d96221b5e9	2
Name: syshost.exe MD5: 32035abaad7594d5b05646d96221b5e9 Size: 131.07 KB (131072 bytes) Detections: 2 Type: Executable File Path: %LOCALAPPDATA%\{D878B3E1-877F-81AD-75A9-348E55872013} Group: Malware file Last Updated: January 21, 2013
16.	onestepb.dll	007c3aca772286dcac7cd0b0831e4c52	1
Name: onestepb.dll MD5: 007c3aca772286dcac7cd0b0831e4c52 Size: 861.77 KB (861776 bytes) Detections: 1 Type: Dynamic link library Path: %PROGRAMFILES%\onestep Group: Malware file Last Updated: January 16, 2013
17.	proxy.exe	27df25d88be35f53347a07b697c455d2	0
Name: proxy.exe MD5: 27df25d88be35f53347a07b697c455d2 Size: 54.78 KB (54784 bytes) Detections: 0 Type: Executable File Group: Malware file Last Updated: January 15, 2013
18.	drop/3e61f1aa075715737196f273eb9	3e61f1aa075715737196f273eb9c682e	0
Name: drop/3e61f1aa075715737196f273eb9 MD5: 3e61f1aa075715737196f273eb9c682e Size: 79.36 KB (79360 bytes) Detections: 0 Group: Malware file Last Updated: January 15, 2013
19.	WKG8CACQ	87f9ddaac8810f2c383d4bdfc4031d94	0
Name: WKG8CACQ MD5: 87f9ddaac8810f2c383d4bdfc4031d94 Size: 54.78 KB (54784 bytes) Detections: 0 Group: Malware file Last Updated: January 15, 2013
20.	9108c2e48ecaa7aad2f557366592cbea	9108c2e48ecaa7aad2f557366592cbea	0
Name: 9108c2e48ecaa7aad2f557366592cbea MD5: 9108c2e48ecaa7aad2f557366592cbea Size: 78.84 KB (78848 bytes) Detections: 0 Group: Malware file Last Updated: January 15, 2013
21.	drop/1feeb60f9cf85877501230984ce	1feeb60f9cf85877501230984ce639c8	0
Name: drop/1feeb60f9cf85877501230984ce MD5: 1feeb60f9cf85877501230984ce639c8 Size: 78.84 KB (78848 bytes) Detections: 0 Group: Malware file Last Updated: January 15, 2013

Enigma Software Group Prevails Over Malwarebytes at the Ninth Circuit

Search

Change Region

Backdoor:Win32/RDPopen

Threat Scorecard

EnigmaSoft Threat Scorecard

Aliases

SpyHunter Detects & Remove Backdoor:Win32/RDPopen

File System Details

Submit Comment

Trending

Gemheartartisan.top

FilterAdmin

ZeroGuard Ransomware

Most Viewed

Discord Shows Black Screen when Sharing Screen

How To Fix 'Printer Driver is Unavailable' Error

What is Msedge.exe?