ThreatExpert's Statistics for Backdoor.Win32.Bifrose [Ikarus]:

Backdoor.Win32.Bifrose [Ikarus] is also known as:

Threat Alias	Number of Incidents
Backdoor.Bifrose [Symantec]	1,518
BackDoor-CEP [McAfee]	735
Constructor.Win32.Bifrose.j [Kaspersky Lab]	519
Mal/Generic-A [Sophos]	509
Backdoor:Win32/Bifrose.AE [Microsoft]	476
Backdoor.Bifrose!sd6 [PC Tools]	421
Win-Trojan/Xema.variant [AhnLab]	281
Mal/Bifrose-S [Sophos]	280
Backdoor:Win32/Bifrose [Microsoft]	243
Backdoor.Win32.Bifrose.adr [Kaspersky Lab]	215
Mal/EncPk-FL [Sophos]	215
Backdoor.Bifrose [PC Tools]	207
Backdoor:Win32/Bifrose.FJ [Microsoft]	194
Backdoor.Win32.Bifrose.bwt [Kaspersky Lab]	134
Backdoor-CEP [McAfee]	130
BackDoor-CEP.gen.g [McAfee]	124
Infostealer [Symantec]	121
Win-Trojan/Bifrose.621568 [AhnLab]	121
Backdoor:Win32/Agent.CQ [Microsoft]	119
Backdoor.Bifrose.BJC [PC Tools]	106
Win-Trojan/Bifrose.1843200 [AhnLab]	106
Backdoor.Trojan [Symantec]	86
Constructor.Bifrose!sd6 [PC Tools]	82
BKDR_BIFROSE.FG [Trend Micro]	81
Troj/Bifrose-XG [Sophos]	81
Troj/BadCab-A [Sophos]	79
Mal/Bifrose-S, Mal/Bifrose-S [Sophos]	78
BackDoor-CEP.svr [McAfee]	76
Backdoor:Win32/Bifrose.gen!B [Microsoft]	75
Troj/Bifrose-WC [Sophos]	69
Constructor.generic!ct [PC Tools]	68
Backdoor.Win32.Bifrose.aci [Kaspersky Lab]	60
Constructor:Win32/Bifrose.A [Microsoft]	60
BackDoor-CEP.gen.au [McAfee]	51
BKDR_BIFROSE.AQR [Trend Micro]	50
Constructor/Bifrose.723456 [AhnLab]	47
Win-Trojan/Bifrose.59904.E [AhnLab]	43
Trojan Horse [Symantec]	42
Troj/Bifrose-UP [Sophos]	39
BKDR_BIFROSE.A [Trend Micro]	37
Backdoor.Win32.Bifrose.agq [Kaspersky Lab]	31
Trojan.Agent.AEAN [PC Tools]	31
Backdoor.Bifrose.K [Symantec]	30
Troj/Bifrose-WT [Sophos]	30
Backdoor:Win32/Poison.AC [Microsoft]	29
Win-Trojan/Bifrose.30208.S [AhnLab]	27
Win-Trojan/Bifrose.27517 [AhnLab]	26
Generic BackDoor [McAfee]	24
Backdoor:Win32/Bifrose.ACI [Microsoft]	23
VirTool:Win32/VBInject.gen!AN [Microsoft]	22
Backdoor.Win32.Bifrose.ahlf [Kaspersky Lab]	21
Backdoor-CEP.gen.f [McAfee]	21
Troj/Agent-GDP [Sophos]	21
VirTool:Win32/CeeInject.gen!J [Microsoft]	21
Virus:Win32/Sality.AM [Microsoft]	21
Backdoor:Win32/Bifrose.EY [Microsoft]	20
Backdoor:Win32/Bifrose.gen!E [Microsoft]	19
Trojan.Dropper [Symantec]	19
W32.Sality.AE [Symantec]	19
W32/Sality-AM [Sophos]	19
Backdoor-CEP.gen.b [McAfee]	18
Constructor.Win32.Bifrose.d [Kaspersky Lab]	18
Troj/Bifrose-WS [Sophos]	18
W32/Sality.gen [McAfee]	17
Backdoor.Win32.Bifrose.adql [Kaspersky Lab]	16
Backdoor.Win32.Bifrose.bkq [Kaspersky Lab]	16
Backdoor:Win32/Trenk!rts [Microsoft]	16
Generic.dx [McAfee]	16
Virus.Win32.Virut.ce [Kaspersky Lab]	15
Backdoor.Win32.Bifrose.apav [Kaspersky Lab]	14
VirTool:Win32/VBInject.gen!BB [Microsoft]	14
W32.Virut.CF [Symantec]	14
Win32/Virut.F [AhnLab]	14
Virus:Win32/Virut.BM [Microsoft]	13
Backdoor.Bifrose.D [PC Tools]	12
Backdoor.Win32.Bifrose.aatj [Kaspersky Lab]	12
Backdoor.Win32.Bifrose.aeod [Kaspersky Lab]	12
Backdoor.Win32.Bifrose.uw [Kaspersky Lab]	12
Backdoor-CEP.gen.p [McAfee]	12
BKDR_BIFROSE.YW [Trend Micro]	12
Constructor/Bifrose.753664 [AhnLab]	12
Mal/Behav-156 [Sophos]	12
Mal/Mdrop-Fam [Sophos]	12
Troj/Poison-AK [Sophos]	12
Virus.Win32.Parite.b [Kaspersky Lab]	12
W32/Scribble-B [Sophos]	12
Backdoor.Win32.Bifrose.akbc [Kaspersky Lab]	11
Mal/Packer [Sophos]	11
PE_PARITE.A [Trend Micro]	11
W32.HLLP.Sality.O [Symantec]	11
W32/Parite-B [Sophos]	11
W32/Virut.n.gen [McAfee]	11
Win32.Sality.AM.Gen [PC Tools]	11
Backdoor.Bifrose.E [Symantec]	10
Backdoor.Bifrost.B [PC Tools]	10
Backdoor.Win32.Bifrose.ahvp [Kaspersky Lab]	10
Backdoor.Win32.Bifrose.aimu [Kaspersky Lab]	10
Backdoor:Win32/Bifrose.gen!D [Microsoft]	10
BKDR_BIFROSE.AQJ [Trend Micro]	10
Constructor.Win32.Bifrose.l [Kaspersky Lab]	10

Backdoor.Win32.Bifrose [Ikarus] has the following possible countries of origin:

Origin		Number of Incidents
	Sweden	360
	Germany	40
	China	29
	Russian Federation	28
	Spain	25
	France	21
	United Kingdom	17
	Saudi Arabia	11
	Portugal	8
	Croatia	4
	Austria	3
	Italy	3
	Taiwan	3
	Brazil	1
	Iran	1
	Norway	1
	Switzerland	1

Backdoor.Win32.Bifrose [Ikarus] is known to be created as:

%AppData%\bifrost\server.exe

%AppData%\bifrost\win32.exe

%AppData%\svchost.exe

%AppData%\update.exe

%AppData%\wd\sa.exe

%CommonAppData%\microsoft\update.exe

%CommonPrograms%\startup\java7.exe

%LocalSettings%\ghvdfsdew.exe

%LocalSettings%\realsched.exe

%LocalSettings%\tempbifrost.exe

%LocalSettings%\tempservices.exe

%LocalSettings%\winstry.exe

%Profiles%\bifrost.exe

%Profiles%\bifrost-private-special.exe

%Profiles%\hack\my documents\maroc.exe

%Profiles%\saad\desktop\server.scr

%Profiles%\servr.exe

%ProgramFiles%\%stemp%\bifrost.exe

%ProgramFiles%\333.exe

%ProgramFiles%\bifroft\server.exe

%ProgramFiles%\bifrojt\serd.exe

%ProgramFiles%\bifrost 1.2\server.exe

%ProgramFiles%\bifrost\_.exe

%ProgramFiles%\bifrost\12.exe

%ProgramFiles%\bifrost\abdou.exe

%ProgramFiles%\bifrost\crank.exe

%ProgramFiles%\bifrost\gdgfk.exe

%ProgramFiles%\bifrost\iexplorer.exe

%ProgramFiles%\bifrost\king.exe

%ProgramFiles%\bifrost\moddd.exe

%ProgramFiles%\bifrost\nera.exe

%ProgramFiles%\bifrost\nono.exe

%ProgramFiles%\bifrost\ooo.exe

%ProgramFiles%\bifrost\photo.exe

%ProgramFiles%\bifrost\photox.exe

%ProgramFiles%\bifrost\q.exe

%ProgramFiles%\bifrost\ratserver.exe

%ProgramFiles%\bifrost\realplay.exe

%ProgramFiles%\bifrost\server.exe

%ProgramFiles%\bifrost\server-bof.exe

%ProgramFiles%\bifrost\servr.exe

%ProgramFiles%\bifrost\sexy.exe

%ProgramFiles%\bifrost\sss.exe

%ProgramFiles%\bifrost\win32.exe

%ProgramFiles%\bifrost\xvhost.exe

%ProgramFiles%\bifrost1\n.exe

%ProgramFiles%\bifrost2u\ss.exe

%ProgramFiles%\bitspirit\bitspirit.exe

%ProgramFiles%\boom1\toxido.exe

%ProgramFiles%\config\setup.exe

%ProgramFiles%\dev-point\mhster.exe

%ProgramFiles%\df\sr.exe

%ProgramFiles%\fan188\fan1.exe

%ProgramFiles%\google picasa2\picasa2.exe

%ProgramFiles%\googlechromes\google.exe

%ProgramFiles%\hh\server.exe

%ProgramFiles%\installshild\k-o.exe

%ProgramFiles%\internet explor\iexplrer.exe

%ProgramFiles%\jnooony\coffin.exe

%ProgramFiles%\key\key.exe

%ProgramFiles%\kor\bot.exe

%ProgramFiles%\m.maher\maheer.exe

%ProgramFiles%\masseneer live\server.exe

%ProgramFiles%\massenger live\server.exe

%ProgramFiles%\messenger\messenger.exe

%ProgramFiles%\messengerplus\server.exe

%ProgramFiles%\micromedia\winrundl.exe

%ProgramFiles%\microsoft offic\windll.exe

%ProgramFiles%\microsoft\wgasys.exe

%ProgramFiles%\msn game\insstall.exe

%ProgramFiles%\msn\server.exe

%ProgramFiles%\msn\svchost.exe

%ProgramFiles%\msngame\msngamer.exe

%ProgramFiles%\msnmgr\msnmgrr.exe

%ProgramFiles%\programme\shop.exe

%ProgramFiles%\server.exe

%ProgramFiles%\service\servicet.exe

%ProgramFiles%\sha3rh-almooot.exe

%ProgramFiles%\silentt\server.exe

%ProgramFiles%\spoolvs\spoolvs.exe

%ProgramFiles%\ss\laass.exe

%ProgramFiles%\sys\win.exe

%ProgramFiles%\system\system.exe

%ProgramFiles%\system\win32.exe

%ProgramFiles%\system31\systemlog.exe

%ProgramFiles%\system32\svchost1.exe

%ProgramFiles%\system32\win.exe

%ProgramFiles%\systeme\server.exe

%ProgramFiles%\website\server.exe

%ProgramFiles%\windows nt\server.exe

%ProgramFiles%\windows\bifrost.exe

%ProgramFiles%\windows\e.scr

%ProgramFiles%\windows\ekern.exe

%ProgramFiles%\windows\server.exe

%ProgramFiles%\windws nt\smss.exe

%ProgramFiles%\wost\server.exe

%ProgramFiles%\xerox\pdlscex.dll

%ProgramFiles%\yahooo\home.exe

%Programs%\startup\006.ram.exe

%Programs%\startup\album.exe

Notes:

%AppData% is a variable that refers to the file system directory that serves as a common repository for application-specific data. A typical path is C:\Documents and Settings\[UserName]\Application Data.
%CommonAppData% is a variable that refers to the file system directory containing application data for all users. A typical path is C:\Documents and Settings\All Users\Application Data.
%CommonPrograms% is a variable that refers to the file system directory that contains the directories for the common program groups that appear on the Start menu for all users. A typical path is C:\Documents and Settings\All Users\Start Menu\Programs (Windows NT/2000/XP).
%LocalSettings% is a variable that specifies the current user's local settings folder. By default, this is C:\Documents and Settings\[UserName]\Local Settings (Windows NT/2000/XP).
%Profiles% is a variable that refers to the file system directory containing user profile folders. A typical path is C:\Documents and Settings.
%ProgramFiles% is a variable that refers to the Program Files folder. A typical path is C:\Program Files.
%Programs% is a variable that refers to the file system directory that contains the user's program groups. A typical path is C:\Documents and Settings\[UserName]\Start Menu\Programs.