Thirtyseven4 Antivirus | AntiMalware | AntiRootkit | AntiSpyware
Thirtyseven4 Antivirus | AntiMalware | AntiRootkit | AntiSpyware
Thirtyseven4 Antivirus | AntiMalware | AntiRootkit | AntiSpyware

BACKDOOR.BREDOLAB.PEK

 

 

 

Name:

Backdoor.Bredolab.pek

Added:

October 17, 2011

Type:

Backdoor

Risk:

Low

Payload:

N/A

At risk systems:

Windows 95/98/ME/XP/NT/2003

 

 

Description:

 

When Backdoor.Bredolab.pek is executed, it performs the following activities:

After execution, it drops the following files:

%Windir%\system32\Packet.dll
%Windir%\system32\wpcap.dll
%Windir%\system32\drivers\npf.sys

It creates/modifies the following registry entries:

DisplayName: "WinPcap Packet Driver (NPF)"
ImagePath: "system32\drivers\NPF.sys"
HKLM\System\CurrentControlSet\Services\NPF
 

 

 

 

 

 

 

 
Thirtyseven4 Antivirus | AntiMalware | AntiRootkit | AntiSpyware

Malware problems?
We can help.

Thirtyseven4 Antivirus | AntiMalware | AntiRootkit | AntiSpyware

Evaluate Thirtyseven4 Antivirus Now

Thirtyseven4 Antivirus | AntiMalware | AntiRootkit | AntiSpyware
Thirtyseven4 - Industry Leading Endpoint Security Solution

“Delight yourself in the Lord and he will give you the desires of your heart.” Psalm 37:4