Skip to content

137 results in Threat Encyclopedia: “BKDR_PLUGX”
Showing Results : 1 - 10
      NextNext Page
...non-malicious file used to load BKDR_PLUGX.DUKPF%Program Files%\Microsoft...RedistList\DefMgr.dll - detected as BKDR_PLUGX.DUKPF%Program Files%\Microsoft...DefMgr.dll.rom - - detected as BKDR_PLUGX.ENC(Note: %Program Files...
...myeclipse.dat ← configuration file{malware path}\windec.exe ← a non-malicious file used to load mpsvc.dll (BKDR_PLUGX.JU)NOTES: It does not have rootkit capabilities. It does not exploit any vulnerability. Dropped by other malware...
...doc%Application Data%\{random letter}{random digits}{random letter}\mpsvc.dll - also detected as BKDR_PLUGX.TOK(Note: %Application Data% is the current user's Application Data folder, which is usually C:\Documents...
...files: %All Users Profile%\DRM\DSSM\DSSM.exe%All Users Profile%\DRM\DSSM\MSO.dll -detected as BKDR_PLUGX.DUKLS%All Users Profile%\DRM\DSSM\{random}(Note: %All Users Profile% is the All Users folder, where...
...used to load vncutilLOC.dll%All Users Profile%\DRM\vncutil\vncutilLOC.dll - copy of itself, detected as BKDR_PLUGX.BIN(Note: %All Users Profile% is the All Users folder, where it usually is C:\Documents and Settings\All...
...non-malicious file used to load DLL component %ProgramData%\starter\splash_screen.dll - also detected as BKDR_PLUGX.DUKNJ; used to load file with malicious code %ProgramData%\starter\hfxpttdyumuzyovm - file containing malicious...
...Other DetailsThis backdoor requires the following additional components to properly run: mpsvc.dll {detected as BKDR_PLUGX.DUKOW} Dropped by other malware, Downloaded from the Internet Connects to URLs/IPs, Drops files
...component file(s): %All Users Profile%\Human Interface\iusb3mon.exe - non-malicious file used to load BKDR_PLUGX.JA%All Users Profile%\Human Interface\iusb3mon.dll detected as TROJ_PLUGX.JA%All Users Profile...
...a user's keystrokes to steal information. Arrival DetailsThis backdoor may be dropped by the following malware: BKDR_PLUGX.SMEInstallationThis backdoor drops the following files: All Users' %User Profile%\Gf\boot.ldr - detected...
...exe ← normal file used to load msi.dll%All Users Profile%\helen\msi.dll ← copy of itself, detected as BKDR_PLUGX.KNI%All Users Profile%\helen\msi.dllmsi ← config data(Note: %All Users Profile% is the All Users folder...

Connect with us on