Beware of malicious backdoor Trojan

The recent emergence of a new malicious backdoor Win32.Trojan.fakeusp.hviv is seen recently. The malicious backdoor Trojan downloader can masquerade as system files LPK.DLL through communication and the execution will connect to the specified IP address, the receiver sends the configuration information of the infected PC; the backdoor registration will be added to startup items and try to end the process of security software such as Antivirus. Hackers can record both keyboard input and upload information to the remote control terminal

Where backdoor Trojan hits on your PC:

  • Terminate tasks and processes
  • Run tasks and processes
  • Collect information (system and personal) from the computer and any storage device attached to it
  • Download additional files
  • Shut down or Restart the computer
  • Report on status
  • Change computer settings
  • Upload files and other contents
  • Open remote command line shells
  • Perform denial of service attacks on other computers

Threat Assessment as per Symantec:

  • Wild level: Low
  • Number of Infections: 0-49
  • Number of sites: 0-2
  • Geographical Distribution: Low
  • Threat Containment: Easy
  • Removal: Easy

Damage Level: Medium

Payload: Opens a backdoor

Distribution Level: Low

Read more about backdoor Trojan on Symantec blog.

Leave a Reply

Your email address will not be published. Required fields are marked *

CommentLuv badge