ThreatExpert's Statistics for Backdoor.Bifrose [Ikarus]:

Backdoor.Bifrose [Ikarus] is also known as:

Threat Alias	Number of Incidents
Trojan:Win32/Agent [Microsoft]	50
Mal/Packer [Sophos]	49
BackDoor-CEP.svr [McAfee]	43
Backdoor:Win32/Bifrose.FO [Microsoft]	29
Packed.Win32.Krap.c [Kaspersky Lab]	19
Infostealer [Symantec]	16
Trojan Horse [Symantec]	14
Packed.Win32.Black.a [Kaspersky Lab]	13
Mal/Bifrose-R [Sophos]	12
Backdoor:Win32/Bifrose.EY [Microsoft]	10
Generic.dx [McAfee]	10
Mal/Behav-285 [Sophos]	10
Mal/EncPk-GT [Sophos]	10
Backdoor.Trojan [Symantec]	9
Mal/Bifrose-R, Mal/Bifrose-S [Sophos]	9
Backdoor.Bifrose [Symantec]	8
Backdoor.Agent!sd6 [PC Tools]	7
Backdoor.Win32.Agent.xxn [Kaspersky Lab]	7
Mal/Generic-A [Sophos]	7
Backdoor:Win32/Bifrose [Microsoft]	5
Backdoor:Win32/Bifrose.ACI [Microsoft]	5
Trojan.Win32.Midgare.agcf [Kaspersky Lab]	5
Backdoor:Win32/Agent.CQ [Microsoft]	4
Backdoor:Win32/Bifrose.ES [Microsoft]	4
Backdoor:Win32/Bifrose.EX [Microsoft]	4
Backdoor-CEP [McAfee]	4
Mal/Behav-103, Mal/Behav-043 [Sophos]	4
Mal/Bifrose-R, Mal/EncPk-DW [Sophos]	4
Trojan.Win32.Midgare.afhf [Kaspersky Lab]	4
WORM_SDBOT.GAV [Trend Micro]	4
Backdoor.Win32.Ciadoor.gn [Kaspersky Lab]	2
Backdoor:Win32/Ciadoor [Microsoft]	2
Mal/EncPk-GT, Mal/Behav-103, Mal/Behav-043 [Sophos]	2
Packed.Win32.Krap [Ikarus]	2
Trojan.Midgare!sd6 [PC Tools]	2
Trojan.Win32.Agent.aetd [Kaspersky Lab]	2
Trojan.Win32.Midgare.rbh [Kaspersky Lab]	2
Trojan.Win32.Midgare.rth [Kaspersky Lab]	2
Trojan.Win32.Small.bvq [Kaspersky Lab]	2
W32/Sdbot.worm [McAfee]	2
Backdoor.CIADoor!ct [PC Tools]	1
Backdoor.Graybird [Symantec]	1
Backdoor.Small!sd6 [PC Tools]	1
Backdoor.Win32.Bifrose [Ikarus]	1
Backdoor.Win32.Bifrose.wet [Kaspersky Lab]	1
Backdoor.Win32.SdBot.igy [Kaspersky Lab]	1
Backdoor.Win32.Small.fzb [Kaspersky Lab]	1
Backdoor:Win32/Agent [Microsoft]	1
Backdoor:Win32/Bifrose.FU [Microsoft]	1
Backdoor:Win32/Poisonivy.H [Microsoft]	1
BackDoor-CEP [McAfee]	1
Mal/Basine-C [Sophos]	1
Mal/Behav-286 [Sophos]	1
Mal/Bifrose-R, Mal/Bifrose-S, Mal/Behav-286 [Sophos]	1
Mal/EncPk-FH [Sophos]	1
New Malware.jn [McAfee]	1
P2P-Worm.Win32.Bacteraloh.h [Kaspersky Lab]	1
PE_PARITE.A [Trend Micro]	1
PE_SALITY.AL-1 [Trend Micro]	1
PE_SALITY.EK [Trend Micro]	1
Spyware.Perfect [Symantec]	1
Troj/Refroso-D [Sophos]	1
Trojan.Generic [PC Tools]	1
Trojan.Small!sd6 [PC Tools]	1
Trojan.Win32.Buzus.zcz [Kaspersky Lab]	1
Trojan.Win32.Midgare.adhe [Kaspersky Lab]	1
Trojan.Win32.Midgare.bun [Kaspersky Lab]	1
Trojan.Win32.Midgare.drh [Kaspersky Lab]	1
Trojan.Win32.Midgare.eek [Kaspersky Lab]	1
Trojan.Win32.Midgare.hjs [Kaspersky Lab]	1
Trojan.Win32.Midgare.jee [Kaspersky Lab]	1
Trojan.Win32.Midgare.jjx [Kaspersky Lab]	1
Trojan.Win32.Midgare.lid [Kaspersky Lab]	1
Trojan.Win32.Midgare.lie [Kaspersky Lab]	1
Trojan.Win32.Midgare.qbv [Kaspersky Lab]	1
Trojan.Win32.Midgare.qmo [Kaspersky Lab]	1
Trojan.Win32.Midgare.vop [Kaspersky Lab]	1
Trojan.Win32.Midgare.wlc [Kaspersky Lab]	1
Trojan:Win32/Meredrop [Microsoft]	1
Trojan:Win32/Midgare.A [Microsoft]	1
Trojan-Dropper.Win32.VB.eni [Kaspersky Lab]	1
TrojanDropper:Win32/Small.AJS [Microsoft]	1
VirTool:Win32/CeeInject [Microsoft]	1
VirTool:Win32/CeeInject.gen!J [Microsoft]	1
VirTool:Win32/CeeInject.gen!K [Microsoft]	1
VirTool:Win32/Vbinder.F [Microsoft]	1
Virus.Win32.Parite.b [Kaspersky Lab]	1
Virus.Win32.Sality.z [Kaspersky Lab]	1
Virus:Win32/Parite.A [Microsoft]	1
W32.IRCBot [Symantec]	1
W32.Pinfi [Symantec]	1
W32.Sality.AE [Symantec]	1
W32.Sality.X [Symantec]	1
W32.Spybot.Worm [Symantec]	1
W32/Parite-B [Sophos]	1
W32/Pate.b [McAfee]	1
W32/Sality.z [McAfee]	1
W32/Sality-AD [Sophos]	1
W32/Sality-AM [Sophos]	1
Win32.Sality.AA [PC Tools]	1

Backdoor.Bifrose [Ikarus] has the following possible countries of origin:

Origin		Number of Incidents
	Sweden	46
	China	5
	Germany	2
	France	1
	Russian Federation	1
	United Kingdom	1

Backdoor.Bifrose [Ikarus] is known to be created as:

%ProgramFiles%\187\186.exe

%ProgramFiles%\antivirus1\server.exe

%ProgramFiles%\bifrost\server.exe

%ProgramFiles%\c\program files\windows\aa.scr

%ProgramFiles%\massenger live\server.exe

%ProgramFiles%\msngers\server.exe

%ProgramFiles%\real\real.exe

%ProgramFiles%\server.exe

%ProgramFiles%\system33\rundill32.exe

%ProgramFiles%\windows\aa.scr

%ProgramFiles%\windows\e.scr

%ProgramFiles%\winlogon\server.exe

%System%\5\5r.exe

%System%\9\9r.exe

%System%\bifrost\server.exe

%System%\bifrost\video.exe

%System%\cssrss.exe

%System%\helpme.exe

%System%\ifs.exe

%System%\msn\msn.exe

%System%\server2.exe

%System%\setup.exe

%System%\svchost\svchost.exe

%System%\svcpos.exe

%System%\system32\win32.exe

%System%\win.exe

%System%\win32\svchost.exe

%System%\wind0ws\msn.exe

%System%\winsy\win32.exe

%System%\xmlwin.exe

%Temp%\amxmodx.exe

%Temp%\ixp000.tmp\bifrost3.exe

%Temp%\ixp000.tmp\ser.ver.exe

%Temp%\ixp000.tmp\server.exe

%Temp%\ixp000.tmp\server1.exe

%Temp%\ixp000.tmp\server2.exe

%Temp%\juagnsf.exe

%Windir%\bifi\bifi.exe

%Windir%\bifrost\server.exe

%Windir%\extracted\server.exe

%Windir%\java.exe

%Windir%\msnmxgrer.exe

%Windir%\server.exe

%Windir%\system\svchost.exe

%Windir%\winmsn.exe

c:\2.exe

c:\bifrost\server.exe

Notes:

%ProgramFiles% is a variable that refers to the Program Files folder. A typical path is C:\Program Files.
%System% is a variable that refers to the System folder. By default, this is C:\Windows\System (Windows 95/98/Me), C:\Winnt\System32 (Windows NT/2000), or C:\Windows\System32 (Windows XP).
%Temp% is a variable that refers to the temporary folder in the short path form. By default, this is C:\Documents and Settings\[UserName]\Local Settings\Temp\ (Windows NT/2000/XP).
%Windir% is a variable that refers to the Windows installation folder. By default, this is C:\Windows or C:\Winnt.