ThreatExpert's Statistics for BKDR_BIFROSE.A [Trend Micro]:

BKDR_BIFROSE.A [Trend Micro] is also known as:

Threat Alias	Number of Incidents
Backdoor.Win32.Bifrose.agq [Kaspersky Lab]	70
BackDoor-CEP [McAfee]	70
Backdoor.Bifrose [Symantec]	64
Backdoor.Bifrose.D [PC Tools]	42
Backdoor:Win32/Bifrose [Microsoft]	38
Backdoor.Win32.Bifrose [Ikarus]	37
Troj/Agent-GDP [Sophos]	30
Backdoor-CEP.gen.b [McAfee]	25
Backdoor.Bifrose.K [Symantec]	23
Backdoor.Win32.Bifrose.uw [Kaspersky Lab]	22
Backdoor.Bifrost.B [PC Tools]	19
Backdoor.Bifrose.LV [PC Tools]	18
Win-Trojan/Bifrose.45056.B [AhnLab]	15
Backdoor:Win32/Bifrose.FL [Microsoft]	13
Win-Trojan/Bifrose.38400.B [AhnLab]	11
Win-Trojan/Bifrose.38797 [AhnLab]	10
Mal/Bifrose-F [Sophos]	8
Mal/Bifrose-F, Mal/Bifrose-B [Sophos]	6
Troj/Bckdr-HEL [Sophos]	6
Backdoor.Bifrost.ER [PC Tools]	4
BackDoor-CEP.svr [McAfee]	4
Email-Worm.Win32.Doombot.k [Kaspersky Lab]	4
Generic.dx [McAfee]	4
I-Worm.BorlcPif.A [PC Tools]	4
W32.Spybot.Worm [Symantec]	4
Bloodhound.Unknown [Symantec]	3
IRC Trojan [Symantec]	3
Backdoor.Win32.Agent.aga [Kaspersky Lab]	2
Generic BackDoor [McAfee]	2
Mal/Bifrose-B [Sophos]	2
Trojan Horse [Symantec]	2
Trojan.DR.Delf.TWK [PC Tools]	2
Virus:Win32/Sality.AM [Microsoft]	2
W32.Sality.AE [Symantec]	2
W32/Sality-AM [Sophos]	2
Backdoor.Bifrose [PC Tools]	1
Backdoor.Bifrose.1 [Ikarus]	1
Backdoor.Bifrose.CP [PC Tools]	1
Backdoor.Win32.Bifrose.a [Kaspersky Lab]	1
Backdoor.Win32.Bifrose.cdy [Kaspersky Lab]	1
Backdoor.Win32.Bifrose.dg [Kaspersky Lab]	1
Backdoor.Win32.Bifrose.yh [Kaspersky Lab]	1
Backdoor:Win32/Bifrose.A [Microsoft]	1
Backdoor:Win32/Bifrose.C [Microsoft]	1
BackDoor-CKA [McAfee]	1
Generic Dropper [McAfee]	1
Mal/TibsPak [Sophos]	1
New Malware.r [McAfee]	1
Troj/Bckdr-CEP [Sophos]	1
Trojan.Crypt!sd5 [PC Tools]	1
Trojan.Inject!sd5 [PC Tools]	1
Trojan.Win32.Crypt.s [Kaspersky Lab]	1
Trojan.Win32.Inject.ab [Kaspersky Lab]	1
Trojan-Dropper.Win32.Agent.amr [Kaspersky Lab]	1
Trojan-Dropper.Win32.Delf.ph [Kaspersky Lab]	1
Trojan-Spy.Agent!sd5 [PC Tools]	1
Trojan-Spy.Win32.Agent.CA [Ikarus]	1
Trojan-Spy.Win32.Agent.ca [Kaspersky Lab]	1
W32.Randex.gen [Symantec]	1
W32/Generic.x [McAfee]	1

BKDR_BIFROSE.A [Trend Micro] has the following possible country of origin:

Origin		Number of Incidents
	Sweden	39

BKDR_BIFROSE.A [Trend Micro] is known to be created as:

%LocalSettings%\temptmp.exe

%ProgramFiles%\server.exe

%System%\bif1c.exe

%System%\bitfrost.exe

%System%\cvshost.exe

%System%\iexplorer.exe

%System%\killdrv.exe

%System%\me.exe

%System%\msmssgs.exe

%System%\msssmsgs.exe

%System%\postalc.exe

%System%\rundlle.exe

%System%\server.exe

%System%\sever.exe

%System%\spool32.exe

%System%\update32.exe

%System%\winudate32.exe

%System%\winword.exe

%Temp%\bifrost v1.0\server.exe

%Temp%\server.exe

%Temp%\services.exe

%UserProfile%\20-12c.exe

%Windir%\alg.exe

%Windir%\antivir.exe

%Windir%\lexplore.exe

%Windir%\msn8.exe

%Windir%\server.exe

%Windir%\svchost.exe

%Windir%\system32:wupdate.exe

%Windir%\wscntf.exe

c:\extracts\server.exe

c:\killdrv.exe

c:\murkrow.exe

c:\server.exe

Notes:

%LocalSettings% is a variable that specifies the current user's local settings folder. By default, this is C:\Documents and Settings\[UserName]\Local Settings (Windows NT/2000/XP).
%ProgramFiles% is a variable that refers to the Program Files folder. A typical path is C:\Program Files.
%System% is a variable that refers to the System folder. By default, this is C:\Windows\System (Windows 95/98/Me), C:\Winnt\System32 (Windows NT/2000), or C:\Windows\System32 (Windows XP).
%Temp% is a variable that refers to the temporary folder in the short path form. By default, this is C:\Documents and Settings\[UserName]\Local Settings\Temp\ (Windows NT/2000/XP).
%UserProfile% is a variable that specifies the current user's profile folder. By default, this is C:\Documents and Settings\[UserName] (Windows NT/2000/XP).
%Windir% is a variable that refers to the Windows installation folder. By default, this is C:\Windows or C:\Winnt.