ThreatExpert's Statistics for Backdoor.Hupigon [Ikarus]:

Backdoor.Hupigon [Ikarus] is also known as:

Threat Alias	Number of Incidents
Backdoor.Graybird [Symantec]	36
BackDoor-AWQ [McAfee]	17
Backdoor.Graybird!Gen [Symantec]	15
Backdoor:Win32/Hupigon [Microsoft]	13
Mal/Generic-A [Sophos]	13
BKDR_HUPIGON.EVG [Trend Micro]	12
Generic.dx [McAfee]	11
Mal/Packer, Mal/GrayBird-B, Mal/Behav-043 [Sophos]	11
New Malware.gr [McAfee]	11
Backdoor.Hupigon.HHW [PC Tools]	10
Backdoor.Win32.Hupigon.qbq [Kaspersky Lab]	10
Packed.Win32.Black.a [Kaspersky Lab]	10
TrojanDropper:Win32/Hupigon.gen!A [Microsoft]	10
Win-Trojan/Hupigon.702976.F [AhnLab]	10
Mal/Behav-285 [Sophos]	9
Mal/Packer [Sophos]	8
Suspicious.MH690 [Symantec]	7
Troj/GrayBrd-CD [Sophos]	7
Backdoor.Graybird.GEN [PC Tools]	6
VirTool:Win32/DelfInject.gen!L [Microsoft]	6
Trojan Horse [Symantec]	5
TrojanDropper:Win32/Delfsnif.A [Microsoft]	5
Backdoor.Hupigon [PC Tools]	4
Backdoor.Win32.Hupigon.axor [Kaspersky Lab]	4
Backdoor.Win32.Hupigon.btwt [Kaspersky Lab]	4
Backdoor.Win32.Hupigon.eml [Kaspersky Lab]	4
BackDoor-ARR [McAfee]	4
BackDoor-AWQ.b [McAfee]	4
BackDoor-AWQ.svr.gen.b [McAfee]	4
New Malware.cc [McAfee]	4
W32.Versie.A [Symantec]	4
Win-Trojan/Hupigon.276529.B [AhnLab]	4
Win-Trojan/Hupigon.278124 [AhnLab]	4
Win-Trojan/Hupigon.280576.AP [AhnLab]	4
Worm.Win32.AutoRun.btg [Kaspersky Lab]	4
Backdoor.Trojan [Symantec]	3
Mal/Hupig-D [Sophos]	3
New Malware.jn [McAfee]	3
New Malware.u [McAfee]	3
VirTool:Win32/DelfInject [Microsoft]	3
Win-Trojan/Hupigon.761344.B [AhnLab]	3
Backdoor.Win32.Hupigon.bxux [Kaspersky Lab]	2
Backdoor.Win32.Hupigon.pv [Kaspersky Lab]	2
Generic BackDoor [McAfee]	2
Mal/Behav-043 [Sophos]	2
New Malware.aq [McAfee]	2
New Malware.hi [McAfee]	2
Packed.Win32.NSAnti.r [Kaspersky Lab]	2
Spyware.MySuperSpy [Symantec]	2
Suspicious.Graybird.1 [Symantec]	2
Trojan.Packed.NsAnti [Symantec]	2
W32.SillyFDC [Symantec]	2
W32/Sality-AM [Sophos]	2
Worm.Win32.AutoRun.llt [Kaspersky Lab]	2
Backdoor.Graybird [PC Tools]	1
Backdoor.Graybird!sd6 [PC Tools]	1
Backdoor.HacDef.ALC [PC Tools]	1
Backdoor.Hupigeon [Symantec]	1
Backdoor.Hupigon.BMJN [PC Tools]	1
Backdoor.Win32.Delf.adj [Kaspersky Lab]	1
Backdoor.Win32.HacDef.073.eq [Kaspersky Lab]	1
Backdoor.Win32.Hupigon.ada [Kaspersky Lab]	1
Backdoor.Win32.Hupigon.alj [Kaspersky Lab]	1
Backdoor.Win32.Hupigon.ave [Kaspersky Lab]	1
Backdoor.Win32.Hupigon.bap [Kaspersky Lab]	1
Backdoor.Win32.Hupigon.blc [Kaspersky Lab]	1
Backdoor.Win32.Hupigon.bleh [Kaspersky Lab]	1
Backdoor.Win32.Hupigon.bqq [Kaspersky Lab]	1
Backdoor.Win32.Hupigon.btlc [Kaspersky Lab]	1
Backdoor.Win32.Hupigon.bxbu [Kaspersky Lab]	1
Backdoor.Win32.Hupigon.clj [Kaspersky Lab]	1
Backdoor.Win32.Hupigon.cmvm [Kaspersky Lab]	1
Backdoor.Win32.Hupigon.cnzv [Kaspersky Lab]	1
Backdoor.Win32.Hupigon.cpso [Kaspersky Lab]	1
Backdoor.Win32.Hupigon.czeg [Kaspersky Lab]	1
Backdoor.Win32.Hupigon.ddwl [Kaspersky Lab]	1
Backdoor.Win32.Hupigon.dsme [Kaspersky Lab]	1
Backdoor.Win32.Hupigon.ducb [Kaspersky Lab]	1
Backdoor.Win32.Hupigon.eko [Kaspersky Lab]	1
Backdoor.Win32.Hupigon.fwsu [Kaspersky Lab]	1
Backdoor.Win32.Hupigon.huvg [Kaspersky Lab]	1
Backdoor.Win32.Hupigon.jrya [Kaspersky Lab]	1
Backdoor.Win32.Hupigon.kcru [Kaspersky Lab]	1
Backdoor.Win32.Hupigon.kcrx [Kaspersky Lab]	1
Backdoor.Win32.Hupigon.oaz [Kaspersky Lab]	1
Backdoor:Win32/Hupigon.ZT [Microsoft]	1
Backdoor:Win32/Refpron.I [Microsoft]	1
BackDoor-ALC [McAfee]	1
BackDoor-AWQ.d [McAfee]	1
BackDoor-AWQ.svr.gen.c [McAfee]	1
BackDoor-CPI [McAfee]	1
BackDoor-SO [McAfee]	1
BKDR_HUPIGON.HF [Trend Micro]	1
BKDR_HUPIGON.UH [Trend Micro]	1
Cryp_Pai-3 [Trend Micro]	1
Downloader [Symantec]	1
Generic Malware.bc [McAfee]	1
Generic Packed.e [McAfee]	1
Generic PUP.x [McAfee]	1
Generic PWS.y [McAfee]	1

Backdoor.Hupigon [Ikarus] has the following possible countries of origin:

Origin		Number of Incidents
	China	62
	Brazil	2
	Republic of Korea	2
	Russian Federation	2
	France	1
	Germany	1
	United Kingdom	1

Backdoor.Hupigon [Ikarus] is known to be created as:

%CommonAppData%\explore1.exe

%ProgramFiles%\allsm\allsm.exe

%ProgramFiles%\hgzserver\svch0st.exe

%ProgramFiles%\internet explorer\syssmss.exe

%ProgramFiles%\remote\remote.exe

%System%\_network.exe

%System%\_versv.exe

%System%\frundlll.exe

%System%\g_server2.03.exe

%System%\hacker.com.cn.exe

%System%\inf\sppdcrs080702.scr

%System%\protected.exe

%System%\svchots.exe

%System%\system.exe

%System%\wndwm.exe

%Temp%\abc.exe

%Temp%\ixp000.tmp\1.exe

%Temp%\ixp000.tmp\activator-v2.exe

%Temp%\kendy.exe

%Temp%\mm.exe

%Temp%\network.exe

%Windir%\1.exe

%Windir%\baby.exe

%Windir%\hacker.com.cn.exe

%Windir%\remote360.exe

%Windir%\svchost.exe

%Windir%\svehost.exe

%Windir%\syskeys.exe

%Windir%\system\sgcxcxxaspf080702.exe

%Windir%\system\systen.exe

%Windir%\test.exe

%Windir%\windows.exe

c:\l135.exe

c:\server0.exe

c:\wisxs.exe

Notes:

%CommonAppData% is a variable that refers to the file system directory containing application data for all users. A typical path is C:\Documents and Settings\All Users\Application Data.
%ProgramFiles% is a variable that refers to the Program Files folder. A typical path is C:\Program Files.
%System% is a variable that refers to the System folder. By default, this is C:\Windows\System (Windows 95/98/Me), C:\Winnt\System32 (Windows NT/2000), or C:\Windows\System32 (Windows XP).
%Temp% is a variable that refers to the temporary folder in the short path form. By default, this is C:\Documents and Settings\[UserName]\Local Settings\Temp\ (Windows NT/2000/XP).
%Windir% is a variable that refers to the Windows installation folder. By default, this is C:\Windows or C:\Winnt.