SecurityHome.eu TrojanDownloader:Win32/Badiehi.A

Home / malware PDF

TrojanDownloader:Win32/Badiehi.A

First posted on 29 July 2019.
Source: Microsoft
Aliases :
There are no other names known for TrojanDownloader:Win32/Badiehi.A.
Explanation :
Installation

This threat is a downloader tool that can be used by malware or software bundlers to download other files.

It can be installed by third-party software installers.

Payload

This threat can download and run files on your PC, including other malware.

We have seen this threat download files from URLs that use the following format:

www..com/.exe www..com/.txt www..com/.tmp

Where is the name of the downloaded file, for example:

dlinstlit.txt filename2save.tmp windows.exe

Stops processes and deletes files

The malware can stop some process and delete the related file. It can also delete registry entries and remove data from explorer.exe memory.

Analysis by Ferdinand Plazo
Last update 29 July 2019

TOP

Malware :

RATDispenser
whispergate
Borat RAT
Trojanized X_Trader
BlackLotus

Last 20

Family:

TrojanDownloader:Win32/Badiehi.A