Home / malware Backdoor:Win64/Cnardito.A!dha
First posted on 12 July 2016.
Source: MicrosoftAliases :
There are no other names known for Backdoor:Win64/Cnardito.A!dha.
Explanation :
This threat is a malicious .dll module used to intercept HTTP traffic and/or events.
It masquerades itself to be a legitimate binary with the following file properties:
CompanyName: Microsoft Corporation
FileDescription: WEB authentication provider
FileVersion: FileVersion,7.5.7601.17514 (win7sp1_rtm.101119-1850)
InternalName: WEB_auth.dll
This analysis was based on SHA1: b3472ddcdb7a6c7cd10f150e8113c5eb8c533612.
Analysis by Jireh Sanico.Last update 12 July 2016
