The page may not load correctly.
An analysis of the technologies used by cybercriminals allows us to draw conclusions about the virus industry’s possible vectors of development and more effectively confront future threats. You, too, can learn what actions various malicious programs take in infected systems and how to withstand them.
A backdoor designed to control infected computers. Depending on the version, different file names are used. For example, file names that correspond to the first version look as follows:
The following are file names corresponding to the second version:
The file name that corresponds to the third version is as follows:
Once the iexplore.exe process is launched, the core module is injected into it to ensure communication with the command and control server.
Encrypted configuration data contains the command and control server address.
For example, one of the following addresses can be used:
var.undef error - undefined variable: DYN_NAME_RECS.pairs
Doctor Web is the Russian developer of Dr.Web anti-virus software. Dr.Web anti-virus software has been developed since 1992.
2-12А, 3rd street Yamskogo polya, Moscow, Russia, 125124
Doctor Web in social networksLink accounts