SecurityHome.eu Backdoor:Win32/Pirpi.C

Home / malware PDF

Backdoor:Win32/Pirpi.C

First posted on 31 May 2019.
Source: Microsoft
Aliases :
There are no other names known for Backdoor:Win32/Pirpi.C.
Explanation :
Backdoor:Win32/Pirpi.C is a trojan that allows backdoor access and control. It is used in conjuction with another Pirpi component.

Installation

Backdoor:Win32/Pirpi.C may be dropped by another Pirpi component with the file name "nwagent.dll".

Payload

Allows backdoor access and control
Backdoor:Win32/Pirpi.C connects to a specific remote server dictated by another Pirpi component. Once connected, it is able to perform actions depending on the instructions received from the remote server:

Terminate processes Download other malware

Analysis by Tim Liu
Last update 31 May 2019

TOP

Malware :

RATDispenser
whispergate
Borat RAT
Trojanized X_Trader
BlackLotus

Last 20

Family:

Backdoor:Win32/Pirpi.C