Threat Search: 

ThreatExpert's Statistics for Backdoor.Generic [Ikarus]:

Backdoor.Generic [Ikarus] is also known as:
Threat AliasNumber of Incidents
Win-Trojan/Xema.variant [AhnLab]45
Backdoor.Ciadoor [Symantec]40
Backdoor.Litmus [PC Tools]36
Win-Trojan/Poison.17408.U [AhnLab]35
Generic.dx!jqk [McAfee]20
Trojan Horse [Symantec]19
IRC.Backdoor.Trojan [Symantec]18
Mal/Generic-A [Sophos]16
Backdoor.IRCBot.XGK [PC Tools]15
Backdoor.Win32.Poison [Ikarus]15
Generic.dx [McAfee]12
Infostealer.Gampass [Symantec]10
HackTool.Win32.Crypt.be [Kaspersky Lab]9
Mal/Behav-211 [Sophos]9
Mal/EncPk-FL [Sophos]9
VirTool:Win32/Vtub.BY [Microsoft]9
Troj/AdbPat-A [Sophos]8
Trojan-Dropper.Win32.VB.ams [Kaspersky Lab]8
VirTool:Win32/VBInject.C [Microsoft]8
W32/Vbbot [McAfee]8
Trojan.Generic [PC Tools]6
Backdoor.Win32.VanBot.ll [Kaspersky Lab]5
Generic PUP.z [McAfee]5
Trojan-Spy.Win32.Logger.e [Kaspersky Lab]5
Win32/IRCBot.worm.variant [AhnLab]5
Win-Trojan/Poisonivy.159247 [AhnLab]5
Adware.Gen [Symantec]4
Backdoor.Win32.Delf.qwz [Kaspersky Lab]4
Generic PWS.y [McAfee]4
Infostealer [Symantec]4
Mal/Behav-229 [Sophos]4
TROJ_DROPPER.ACO [Trend Micro]4
Trojan:Win32/Trufip!rts [Microsoft]4
TSPY_ONLINEG.DLM [Trend Micro]4
W32/Nirbot.worm [McAfee]4
Win-Trojan/FtpSpy.74240 [AhnLab]4
Backdoor.Trojan [Symantec]3
Generic BackDoor [McAfee]3
Infostealer.Banker.C [Symantec]3
Mal/Generic-E [Sophos]3
Trojan.Dropper [Symantec]3
Trojan.PWS.OnLineGames.MQO [PC Tools]3
Trojan:Win32/Meredrop [Microsoft]3
TrojanSpy:Win32/Mafod!rts [Microsoft]3
Backdoor.Bifrose [Symantec]2
Backdoor.generic!ct [PC Tools]2
Backdoor.Graybird [Symantec]2
Backdoor:Win32/Visel.B [Microsoft]2
Troj/PMK-0.9 [Sophos]2
Trojan-PSW.Win32.OnLineGames.pdu [Kaspersky Lab]2
Trojan-Spy.Gampass!sd6 [PC Tools]2
W32/Autorun.worm.gen [McAfee]2
Worm.AutoRun.WHY [PC Tools]2
Worm.Win32.AutoRun.zcu [Kaspersky Lab]2
Backdoor.Graybird.D [Symantec]1
Backdoor.Trojan [PC Tools]1
Backdoor.Visel.CA [PC Tools]1
Backdoor.Win32.Agent.fxp [Kaspersky Lab]1
Backdoor.Win32.Bifrose.aqgk [Kaspersky Lab]1
Backdoor.Win32.Visel.lt [Kaspersky Lab]1
Backdoor.Win32.Visel.yq [Kaspersky Lab]1
Backdoor:Win32/Small.D [Microsoft]1
BackDoor-AWQ [McAfee]1
BKDR_VISEL.BS [Trend Micro]1
Downloader [Symantec]1
Generic Downloader.x!bxl [McAfee]1
Generic Dropper [McAfee]1
Generic PWS.y!dw [McAfee]1
Generic.dx!ha [McAfee]1
Generic.dx!ksu [McAfee]1
Mal/Behav-204 [Sophos]1
Mal/Dropper-O, Mal/Packer [Sophos]1
Mal/EncPk-AP [Sophos]1
Mal/HckPk-D [Sophos]1
Mal/TibsPk-A, Mal/Packer [Sophos]1
New Malware.cc [McAfee]1
Suspicious.MH690 [Symantec]1
Troj/BadCab-A [Sophos]1
Troj/Bckdr-QSE [Sophos]1
TROJ_VB.HAA [Trend Micro]1
Trojan.Agent.CBGN [PC Tools]1
Trojan.PWS.Nilage.Gen.3 [PC Tools]1
Trojan:Win32/Alureon.gen!J [Microsoft]1
Trojan-Downloader.Win32.Genome.vlw [Kaspersky Lab]1
Trojan-GameThief.Win32.OnLineGames.pdu [Kaspersky Lab]1
VirTool:Win32/Vtub.ANR [Microsoft]1
W32.SillyFDC [Symantec]1
Win-Trojan/Visel.203480.B [AhnLab]1

Backdoor.Generic [Ikarus] has the following possible countries of origin:
OriginNumber of Incidents
United Kingdom15
China11
Germany4
Spain4
Saudi Arabia3
Turkey3
Denmark1
Egypt1
Greece1
Iran1
Norway1
Republic of Korea1
Russian Federation1

Backdoor.Generic [Ikarus] is known to be created as:
%Profiles%\localservice\application data\1483705219.exe
%ProgramFiles%\regfixpro\tcl.dll
%System%\jwka.exe
%System%\steelkernel32.exe
%System%\stemp_02.exe
%System%\svhost.exe
%System%\system32..exe
%System%\winsyslik.exe
%Temp%\14.exe
%Temp%\2.exe
%Temp%\crack.exe
%Temp%\ixp000.tmp\2.exe
%Temp%\ixp000.tmp\server.exe
%Temp%\server.exe
%Temp%\ttemp_01.exe
%Temp%\ttemp_02.exe
%Windir%\debug\b831406a9770.exe
%Windir%\ipdriver.exe
%Windir%\risker.exe
%Windir%\system32:windir.exe
c:\programm files\premium_crypter.exe
c:\windows:svchost.exe
Notes:
  • %Profiles% is a variable that refers to the file system directory containing user profile folders. A typical path is C:\Documents and Settings.
  • %ProgramFiles% is a variable that refers to the Program Files folder. A typical path is C:\Program Files.
  • %System% is a variable that refers to the System folder. By default, this is C:\Windows\System (Windows 95/98/Me), C:\Winnt\System32 (Windows NT/2000), or C:\Windows\System32 (Windows XP).
  • %Temp% is a variable that refers to the temporary folder in the short path form. By default, this is C:\Documents and Settings\[UserName]\Local Settings\Temp\ (Windows NT/2000/XP).
  • %Windir% is a variable that refers to the Windows installation folder. By default, this is C:\Windows or C:\Winnt.