Skip to content

131 results in Threat Encyclopedia: “BKDR_PLUGX”
Showing Results : 1 - 10
      NextNext Page
...doc%Application Data%\{random letter}{random digits}{random letter}\mpsvc.dll - also detected as BKDR_PLUGX.TOK(Note: %Application Data% is the current user's Application Data folder, which is usually C:\Documents...
...used to load vncutilLOC.dll%All Users Profile%\DRM\vncutil\vncutilLOC.dll - copy of itself, detected as BKDR_PLUGX.BIN(Note: %All Users Profile% is the All Users folder, where it usually is C:\Documents and Settings\All...
...files: %All Users Profile%\DRM\DSSM\DSSM.exe%All Users Profile%\DRM\DSSM\MSO.dll -detected as BKDR_PLUGX.DUKLS%All Users Profile%\DRM\DSSM\{random}(Note: %All Users Profile% is the All Users folder, where...
...non-malicious file used to load DLL component %ProgramData%\starter\splash_screen.dll - also detected as BKDR_PLUGX.DUKNJ; used to load file with malicious code %ProgramData%\starter\hfxpttdyumuzyovm - file containing malicious...
...component file(s): %All Users Profile%\Human Interface\iusb3mon.exe - non-malicious file used to load BKDR_PLUGX.JA%All Users Profile%\Human Interface\iusb3mon.dll detected as TROJ_PLUGX.JA%All Users Profile...
...myeclipse.dat ← configuration file{malware path}\windec.exe ← a non-malicious file used to load mpsvc.dll (BKDR_PLUGX.JU)NOTES: It does not have rootkit capabilities. It does not exploit any vulnerability. Dropped by other malware...
...a user's keystrokes to steal information. Arrival DetailsThis backdoor may be dropped by the following malware: BKDR_PLUGX.SMEInstallationThis backdoor drops the following files: All Users' %User Profile%\Gf\boot.ldr - detected...
...exe ← normal file used to load msi.dll%All Users Profile%\helen\msi.dll ← copy of itself, detected as BKDR_PLUGX.KNI%All Users Profile%\helen\msi.dllmsi ← config data(Note: %All Users Profile% is the All Users folder...
...CommFunc.dll - detected as BKDR_PLUGX.DO%User Temp%\CommFunc.jax - detected as BKDR_PLUGX.DO%All Users Profile%\Camera...Camera\CommFunc.dll - detected as BKDR_PLUGX.DO %All Users Profile%\Camera...
...following files: %User Temp%\tmp2B.tmp - detected as BKDR_PLUGX.ZTBL-EC, executable image, will be deleted%User...and deleted%User Temp%\tmp2D.tmp - detected as BKDR_PLUGX.ZTBL-EC, dll image, will be deleted%Application...

Connect with us on