BKDR_TENPEQ.SM
Threat Scorecard
EnigmaSoft Threat Scorecard
EnigmaSoft Threat Scorecards are assessment reports for different malware threats which have been collected and analyzed by our research team. EnigmaSoft Threat Scorecards evaluate and rank threats using several metrics including real-world and potential risk factors, trends, frequency, prevalence, and persistence. EnigmaSoft Threat Scorecards are updated regularly based on our research data and metrics and are useful for a wide range of computer users, from end users seeking solutions to remove malware from their systems to security experts analyzing threats.
EnigmaSoft Threat Scorecards display a variety of useful information, including:
Ranking: The ranking of a particular threat in EnigmaSoft’s Threat Database.
Severity Level: The determined severity level of an object, represented numerically, based on our risk modeling process and research, as explained in our Threat Assessment Criteria.
Infected Computers: The number of confirmed and suspected cases of a particular threat detected on infected computers as reported by SpyHunter.
See also Threat Assessment Criteria.
Threat Level: | 10 % (Normal) |
Infected Computers: | 3 |
First Seen: | August 19, 2013 |
Last Seen: | February 7, 2023 |
OS(es) Affected: | Windows |
BKDR_TENPEQ.SM is a dangerous backdoor Trojan infection that is used to steal important data from computer systems related to several crucial industries in South Korea. BKDR_TENPEQ.SM is installed by another Trojan, a dangerous spy Trojan designed to steal gaming credentials. This Trojan, named TSPY_ONLINEG.OMU is part of a notorious malware family designed to compromise computer users' online gaming passwords and account information. In an unexpected second stage of the attack, this spy Trojan downloads and installs BKDR_TENPEQ.SM, a malicious backdoor Trojan that allows a third party to gain access to the infected computer system to steal data and control it from a remote location.
Table of Contents
BKDR_TENPEQ.SM Installs a Backdoor Among Other Harmful Actions
BKDR_TENPEQ.SM attacks are designed to infect computer systems in South Korea. BKDR_TENPEQ.SM attacks have been observed on South Korean websites that have been compromised and that are related to several key industries. The spy Trojan mentioned above downloads and installs BKDR_TENPEQ.SM as soon as the victim's computer visits the administration consoles for websites related to these specific industries. The BKDR_TENPEQ.SM component makes the TSPY_ONLINEG.OMU Trojan attack infinitely more dangerous. BKDR_TENPEQ.SM has a keylogger component and also installs a backdoor on the infected computer system that allows criminals to gain remote access to the victim's computer system. BKDR_TENPEQ.SM attacks are designed to affect computers that are associated with businesses involved in South Korean television, shopping, news, financial institutions, advertising, and online gaming.
The Possible Implications of a BKDR_TENPEQ.SM Attack
It is no coincidence that the initial stage of the BKDR_TENPEQ.SM attack involves the use of TSPY_ONLINEG.OMU. South Korea is known for the enormous popularity of online gaming among the population, and this Trojan is part of a well known family of malware designed to steal gaming credentials. However, ESG malware analysts suspect that this attack may have been designed to conceal the ultimate purpose of this attack: to install the BKDR_TENPEQ.SM backdoor Trojan on the victim's computer system. It is possible that the malware developers are counting on the fact that many PC security researchers may overlook the second stage of this attack, believing that this is an ordinary spy Trojan attack from the TSPY_ONLINEG family of malware. Its sophisticated techniques have made PC security researchers suspect that BKDR_TENPEQ.SM is part of a high-profile industrial espionage operation that may be state sponsored to target South Korean industries.
URLs
BKDR_TENPEQ.SM may call the following URLs:
tabzmania.com |
Submit Comment
Please DO NOT use this comment system for support or billing questions. For SpyHunter technical support requests, please contact our technical support team directly by opening a customer support ticket via your SpyHunter. For billing issues, please refer to our "Billing Questions or Problems?" page. For general inquiries (complaints, legal, press, marketing, copyright), visit our "Inquiries and Feedback" page.