Home / malware TrojanDownloader:MSIL/Bladabindi.A
First posted on 27 March 2019.
Source: MicrosoftAliases :
There are no other names known for TrojanDownloader:MSIL/Bladabindi.A.
Explanation :
TrojanDownloader:MSIL/Bladabindi.A copies itself to the
with a file name .exe, for example e3adf6e1.exe, to make sure it runs automatically after a system reboot.
When run, it will download malware from the Backdoor:MSIL/Bladabindi family from a remote server and run it directly from memory.
Analysis by Zhitao ZhouLast update 27 March 2019
