Skip to content

136 results in Threat Encyclopedia: “BKDR_PLUGX”
Showing Results : 1 - 10
      NextNext Page
...non-malicious file used to load BKDR_PLUGX.DUKPF%Program Files%\Microsoft...RedistList\DefMgr.dll - detected as BKDR_PLUGX.DUKPF%Program Files%\Microsoft...DefMgr.dll.rom - - detected as BKDR_PLUGX.ENC(Note: %Program Files...
...used to load vncutilLOC.dll%All Users Profile%\DRM\vncutil\vncutilLOC.dll - copy of itself, detected as BKDR_PLUGX.BIN(Note: %All Users Profile% is the All Users folder, where it usually is C:\Documents and Settings\All...
...non-malicious file used to load DLL component %ProgramData%\starter\splash_screen.dll - also detected as BKDR_PLUGX.DUKNJ; used to load file with malicious code %ProgramData%\starter\hfxpttdyumuzyovm - file containing malicious...
...component file(s): %All Users Profile%\Human Interface\iusb3mon.exe - non-malicious file used to load BKDR_PLUGX.JA%All Users Profile%\Human Interface\iusb3mon.dll detected as TROJ_PLUGX.JA%All Users Profile...
...files: %All Users Profile%\DRM\DSSM\DSSM.exe%All Users Profile%\DRM\DSSM\MSO.dll -detected as BKDR_PLUGX.DUKLS%All Users Profile%\DRM\DSSM\{random}(Note: %All Users Profile% is the All Users folder, where...
...Other DetailsThis backdoor requires the following additional components to properly run: mpsvc.dll {detected as BKDR_PLUGX.DUKOW} Dropped by other malware, Downloaded from the Internet Connects to URLs/IPs, Drops files
...myeclipse.dat ← configuration file{malware path}\windec.exe ← a non-malicious file used to load mpsvc.dll (BKDR_PLUGX.JU)NOTES: It does not have rootkit capabilities. It does not exploit any vulnerability. Dropped by other malware...
...a user's keystrokes to steal information. Arrival DetailsThis backdoor may be dropped by the following malware: BKDR_PLUGX.SMEInstallationThis backdoor drops the following files: All Users' %User Profile%\Gf\boot.ldr - detected...
...doc%Application Data%\{random letter}{random digits}{random letter}\mpsvc.dll - also detected as BKDR_PLUGX.TOK(Note: %Application Data% is the current user's Application Data folder, which is usually C:\Documents...
...exe ← normal file used to load msi.dll%All Users Profile%\helen\msi.dll ← copy of itself, detected as BKDR_PLUGX.KNI%All Users Profile%\helen\msi.dllmsi ← config data(Note: %All Users Profile% is the All Users folder...

Connect with us on