Threat Database Backdoors BKDR_PLUGX.SME


By Sumo3000 in Backdoors

Threat Scorecard

Ranking: 549
Threat Level: 20 % (Normal)
Infected Computers: 51,469
First Seen: September 21, 2012
Last Seen: February 14, 2023
OS(es) Affected: Windows

BKDR_PLUGX.SME is a backdoor Trojan that spreads on the web while via dangerous websites. BKDR_PLUGX.SME can also proliferate with the help of other malware infections. BKDR_PLUGX.SME is a remote access tool (RAT) identified as PlugX. BKDR_PLUGX.SME is one of the most common malware infections used in executing targeted attacks directed towards Japanese government institutions. After execution, BKDR_PLUGX.SME erases itself. BKDR_PLUGX.SME adds potentially infectious files.

File System Details

BKDR_PLUGX.SME may create the following file(s):
# File Name Detections
1. %All Users Profile%\Gf\NvSmartMax.dll
2. %User Profile%\UdpGf\NvSmart.exe
3. %User Profile%\UdpGf\NvSmartMax.dll
4. %All Users Profile%\Gf\NvSmart.exe
5. %All Users Profile%\Gf\boot.ldr
6. %User Profile%\UdpGf\NvSmart.usr

Registry Details

BKDR_PLUGX.SME may create the following registry entry or registry entries:


Most Viewed