Threat Database Stealers Infostealer.Opsiness


By Domesticus in Stealers

Backdoor.Opsiness is a backdoor Trojan that opens a back door and steals personal information from the compromised PC. Once run, Infostealer.Opsiness creates a copy of itself to the particular location. Infostealer.Opsiness may then create one of the registry entries so that it can load automatically whenever a PC user starts Windows. Infostealer.Opsiness then connects to one or more remote locations. Then, Infostealer.Opsiness opens a back door on the corrupted PC, which enables a cybercriminal to execute a variety of malevolent actions, such as drop files, surf the file system, take screenshots, retrieve credentials from the vulnerable computer, update itself and uninstall itself. Infostealer.Opsiness steals the particular information from the targeted PC and transfers it to the remote cybercriminal.

File System Details

Infostealer.Opsiness creates the following file(s):
# File Name Detections
1. %DriveLetter%\Documents and Settings\Administrator\Application Data\servctl.jar N/A

Registry Details

Infostealer.Opsiness creates the following registry entry or registry entries:
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\"asdasa" = "%DriveLetter%\aaa.exe"
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\"WinFirewall" = "C:\Program Files\Java\jre6\bin\javaw.exe -jar C:\Documents and Settings\Administrator\Application Data\servctl.jar"


Most Viewed