Home / malwarePDF  

Backdoor:Win32/Rifitrox.A


First posted on 02 June 2014.
Source: Microsoft

Aliases :

There are no other names known for Backdoor:Win32/Rifitrox.A.

Explanation :

Threat behavior

Installation

Backdoor:Win32/Rifitrox.A creates the following files on your PC:

  • \device\null
  • c:\documents and settings\administrator\local settings\temp\6691.bat


Payload

Allows backdoor access and control

Backdoor:Win32/Rifitrox.A gives a hacker access and control of your PC. They can then perform a number of different actions, including:
  • Downloading and running files
  • Uploading files
  • Spreading malware to other PCs
  • Logging your keystrokes or stealing your sensitive data
  • Modifying your system settings
  • Running or stopping applications
  • Deleting files

This malware description was produced and published using automated analysis of file SHA1 13970f38f2133a589874f0da43a53b22be99403c.Symptoms

System changes

The following could indicate that you have this threat on your PC:

  • You have these files:

    \device\null
    c:\documents and settings\administrator\local settings\temp\6691.bat

Last update 02 June 2014

 

TOP

Malware :

Family: