ThreatExpert's Statistics for BKDR_BIFROSE.MIC [Trend Micro]:

BKDR_BIFROSE.MIC [Trend Micro] is also known as:

Threat Alias	Number of Incidents
BackDoor-CEP.svr [McAfee]	255
Backdoor:Win32/Bifrose.ACI [Microsoft]	230
Trojan.Win32.Agent.bcn [Kaspersky Lab]	197
Trojan Horse [Symantec]	152
Virus.Win32.Bifrose [Ikarus]	142
Win-Trojan/Bifrose.29053 [AhnLab]	139
Trojan.Agent.CZZK [PC Tools]	119
Infostealer [Symantec]	83
Backdoor.Bifrose.AHY [PC Tools]	62
Mal/Bifrose-G, Mal/Bifrose-D, Mal/Bifrose-A, Mal/Bifrose-E [Sophos]	59
Backdoor.Bifrose [Symantec]	53
Mal/Bifrose-R, Mal/Bifrose-G, Mal/Bifrose-D, Mal/Bifrose-A, Mal/Bifrose-E [Sophos]	47
Backdoor.Bifrost [Ikarus]	38
Dropper/Agent.29565 [AhnLab]	35
Backdoor.Win32.Bifrose.fny [Kaspersky Lab]	31
Backdoor:Win32/Bifrose.gen!C [Microsoft]	30
Mal/Bifrose-R, Mal/Bifrose-E [Sophos]	30
Backdoor.Win32.Bifrose.fmv [Kaspersky Lab]	29
Backdoor.Bifrose [PC Tools]	27
BackDoor-CEP.gen [McAfee]	20
Mal/Bifrose-E [Sophos]	17
Mal/Bifrose-Y, Mal/Bifrose-G, Mal/Bifrose-D, Mal/Bifrose-Y, Mal/Bifrose-G, Mal/Bifrose-D, Mal/Bifrose-E, Mal/Bifrose-R, Mal/Bifrose-A, Mal/Bifrose-R, Mal/Bifrose-A [Sophos]	17
Mal/Bifrose-Y, Mal/Bifrose-R, Mal/Bifrose-E, Mal/Bifrose-G, Mal/Bifrose-D, Mal/Bifrose-A [Sophos]	15
Mal/Generic-E, Mal/Bifrose-R, Mal/Bifrose-E, Mal/Bifrose-G, Mal/Bifrose-D, Mal/Bifrose-A [Sophos]	12
Troj/Agent-JZZ [Sophos]	11
Win-Trojan/Bifrose.29053.AW [AhnLab]	11
Mal/EncPk-FL, Mal/EncPk-IT [Sophos]	10
Trojan.Generic [Ikarus]	10
Virus:Win32/Virut.BM [Microsoft]	8
Win-Trojan/Bifrose.28672.AE [AhnLab]	8
Trojan-PSW.Generic [PC Tools]	7
Backdoor.Bifrose!sd6 [PC Tools]	6
BKDR_BIFROSE.AIP [Trend Micro]	6
Mal/Bifrose-E, Mal/Bifrose-R, Mal/Bifrose-R [Sophos]	6
Mal/Bifrose-G, Mal/Bifrose-D, Mal/Bifrose-E [Sophos]	6
Mal/Bifrose-D [Sophos]	5
Virus.Win32.Bifrose.DPA [Ikarus]	5
Backdoor.Bifrose.RH.Gen [PC Tools]	4
Backdoor.Win32.Bifrose.ahyc [Kaspersky Lab]	4
Mal/EncPk-IT, Mal/Bifrose-E, Mal/EncPk-FL [Sophos]	4
Troj/Agent-HBG [Sophos]	4
Win32/Virut.F [AhnLab]	4
Backdoor.Win32.Bifrose [Ikarus]	3
Backdoor.Win32.Bifrose.bgn [Kaspersky Lab]	3
Backdoor:Win32/Bifrose [Microsoft]	3
Mal/Bifrose-G, Mal/Bifrose-E [Sophos]	3
Mal/Bifrose-R, Mal/Bifrose-G, Mal/Bifrose-D, Mal/Bifrose-A, Mal/Bifrose-E, W32/Scribble-B [Sophos]	3
Mal/Bifrose-Y, Mal/Bifrose-G, Mal/Bifrose-D, Mal/Bifrose-Y, Mal/Bifrose-G, Mal/Bifrose-D, Mal/Bifrose-E, Mal/Bifrose-R, Mal/Bifrose-A, Mal/Bifrose-R, Mal/Bifrose-A, W32/Scribble-B [Sophos]	3
Mal/Generic-A [Sophos]	3
Win-Trojan/Agent.29085.M [AhnLab]	3
Backdoor.Bifrose!ct [PC Tools]	2
Backdoor.Win32.Bifrose.fba [Kaspersky Lab]	2
Backdoor-CEP [McAfee]	2
BackDoor-CEP [McAfee]	2
Mal/Behav-103, Mal/Behav-043 [Sophos]	2
Mal/Bifrose-D, Mal/Bifrose-A [Sophos]	2
Mal/Bifrose-E, W32/Scribble-B [Sophos]	2
Mal/Bifrose-G, Mal/Bifrose-D, Mal/Behav-103, Mal/Bifrose-E, Mal/Behav-043 [Sophos]	2
Mal/Bifrose-H, Mal/Bifrose-G, Mal/Bifrose-D, Mal/Bifrose-E [Sophos]	2
Mal/Bifrose-R, Mal/Bifrose-E, Mal/Bifrose-G, Mal/Bifrose-D, Mal/Bifrose-A [Sophos]	2
Mal/Bifrose-Y, Mal/Bifrose-E, Mal/Bifrose-G, Mal/Bifrose-D [Sophos]	2
Mal/Bifrose-Y, Mal/Bifrose-G, Mal/Bifrose-D, Mal/Bifrose-Y, Mal/Bifrose-G, Mal/Bifrose-D, Mal/Bifrose-E [Sophos]	2
Mal/UnkPack-Fam [Sophos]	2
New Win32 [McAfee]	2
W32.Virut.CF [Symantec]	2
W32/Virut.n.gen [McAfee]	2
Win-Trojan/Bifrose.29053.BW [AhnLab]	2
Adware.Adhelper [Symantec]	1
Backdoor.Win32.Bifrose.ancu [Kaspersky Lab]	1
Backdoor.Win32.Bifrose.aoxj [Kaspersky Lab]	1
Backdoor.Win32.Bifrose.bbt [Kaspersky Lab]	1
Backdoor.Win32.Bifrose.bhqf [Kaspersky Lab]	1
Backdoor.Win32.Bifrose.cnx [Kaspersky Lab]	1
Backdoor.Win32.Bifrose.qiw [Kaspersky Lab]	1
Backdoor.Win32.Bifrose.tiu [Kaspersky Lab]	1
Backdoor.Win32.Bifrose.xlw [Kaspersky Lab]	1
BackDoor-CEP!o [McAfee]	1
Mal/Behav-160 [Sophos]	1
Mal/Bifrose-G, Mal/Bifrose-A, Mal/Bifrose-E [Sophos]	1
Mal/Bifrose-G, Mal/Bifrose-D, Mal/Bifrose-E, W32/Scribble-B [Sophos]	1
Mal/Bifrose-P [Sophos]	1
Mal/Bifrose-R, Mal/Bifrose-E, W32/Scribble-B [Sophos]	1
Mal/Bifrose-Y, Mal/Bifrose-G, Mal/Bifrose-Y, Mal/Bifrose-G, Mal/Bifrose-E [Sophos]	1
Mal/Bifrose-Y, Mal/Bifrose-G, Mal/Bifrose-Y, Mal/Bifrose-G, Mal/Bifrose-E, Mal/Bifrose-R, Mal/Bifrose-A, Mal/Bifrose-R, Mal/Bifrose-A [Sophos]	1
Mal/EncPk-FL [Sophos]	1
Mal/EncPk-FL, Mal/Bifrose-E [Sophos]	1
Mal/EncPk-IT [Sophos]	1
Mal/EncPk-IT, Mal/Bifrose-R, Mal/EncPk-FL, Mal/Bifrose-E [Sophos]	1
Mal/EncPk-IT, Mal/EncPk-FL, Mal/Bifrose-E [Sophos]	1
Mal/Generic-A, Mal/Behav-103, Mal/Behav-043 [Sophos]	1
Mal/Generic-E, Mal/Bifrose-E, Mal/Bifrose-G, Mal/Bifrose-D [Sophos]	1
Packed.Win32.PePatch.lc [Kaspersky Lab]	1
Suspicious.Bifrose [Symantec]	1
Virus.Win32.Bifrose.DPF [Ikarus]	1
W32/Scribble-B [Sophos]	1
Win-Trojan/Bifrose.28672.D [AhnLab]	1
Win-Trojan/Bifrose.28672.O [AhnLab]	1
Win-Trojan/Bifrose.29053.BA [AhnLab]	1
Win-Trojan/Bifrose.30208.Q [AhnLab]	1
Win-Trojan/Bifrose.53760.D [AhnLab]	1

BKDR_BIFROSE.MIC [Trend Micro] has the following possible countries of origin:

Origin		Number of Incidents
	Sweden	187
	Russian Federation	2
	China	1
	Israel	1

BKDR_BIFROSE.MIC [Trend Micro] is known to be created as:

%AppData%\iexplore.exe

%AppData%\msn.exe

%AppData%\server.exe

%AppData%\setup.exe

%AppData%\yah_try.exe

%LocalSettings%\tempservices.exe

%ProgramFiles%\acd systemms\acdsee.exe

%ProgramFiles%\bifrost\antivirus32.exe

%ProgramFiles%\bifrost\log.exe

%ProgramFiles%\bifrost\server.exe

%ProgramFiles%\bifrost\sexy.exe

%ProgramFiles%\bifrost\winupd.exe

%ProgramFiles%\config\karimhikal.exe

%ProgramFiles%\ddddddd\dddddd.exe

%ProgramFiles%\drv32z\ksjdssdaf.exe

%ProgramFiles%\inf\win86.exe

%ProgramFiles%\internet\windowspak.exe

%ProgramFiles%\mesenger\windows.exe

%ProgramFiles%\messenger live\msnmsngr.exe

%ProgramFiles%\messenger live\server.exe

%ProgramFiles%\microsft\wini.exe

%ProgramFiles%\microsoft\experience.exe

%ProgramFiles%\mms\msnmsgr.exe

%ProgramFiles%\msn\msn.exe

%ProgramFiles%\msn\msns.exe

%ProgramFiles%\msnmsnger\msnmsgr.exe

%ProgramFiles%\system\plugs.exe

%ProgramFiles%\try\ksa.exe

%ProgramFiles%\webmax\server.exe

%ProgramFiles%\wemsn\dovmed.exe

%ProgramFiles%\wimrar\wimrar.exe

%ProgramFiles%\windoof\server.exe

%ProgramFiles%\windos update\svchost.exe

%ProgramFiles%\windows update\win32update.exe

%ProgramFiles%\windows\windows.exe

%ProgramFiles%\winsoft\shell.exe

%ProgramFiles%\yahoomassanger\server.exe

%Programs%\server.exe

%System%\6373n\6373n.exe

%System%\bifrost\r.exe

%System%\bifrost\server.exe

%System%\bifrost\sexsexsexs.exe

%System%\bios\bios.exe

%System%\explorer\explorer.exe

%System%\firefoxdll\sys_undate.exe

%System%\g32pi\svchost.exe

%System%\iexplore.exe

%System%\iexplorer.exe

%System%\lncom_.exe

%System%\micro\micr.exe

%System%\msd0s\ms.exe

%System%\redidit\instal.exe

%System%\saawt\sawt.exe

%System%\sex\server.exe

%System%\system.exe

%System%\system\svchost.exe

%System%\system\system.exe

%System%\system\win.exe

%System%\system\win32.exe

%System%\system32\msn.exe

%System%\system32\server.exe

%System%\system32\system.exe

%System%\system32\win32.exe

%System%\systeme32\ttttt.exe

%System%\vmnetdhcp\vmnat.exe

%System%\window\tast.exe

%System%\windows\idiot.exe

%System%\windows\win32.exe

%System%\winsys\wincom.exe

%System%\xt0bi\server.exe

%Temp%\bif1.exe

%Temp%\decrypted.exe

%Temp%\ejserver.exe

%Temp%\ixp000.tmp\biffrost.exe

%Temp%\ixp000.tmp\server.exe

%Temp%\m4st3r.exe

%Temp%\master.exe

%Temp%\prxnsw_server.exe

%Temp%\server.exe

%Temp%\server_original.exe

%Temp%\serveraaaaa.exe

%Temp%\svchost1.exe.exe

%Temp%\tmp.exe

%Windir%\21\21.exe

%Windir%\bifrost\hamza1.exe

%Windir%\bifrost\server.exe

%Windir%\bifrostt\pruebas.exe

%Windir%\blubb0r\server.exe

%Windir%\exblorer\msn.exe

%Windir%\http\http.exe

%Windir%\msn\msn.exe

%Windir%\pipodrag\msnmsgr.exe

%Windir%\shell-dll.exe

%Windir%\system\system.exe

%Windir%\systeme32\systeme32.exe

%Windir%\systemm\sector.exe

%Windir%\temp\systemb.exe

%Windir%\tmps\shvost.exe

%Windir%\video.exe

%Windir%\win32trxf.exe

Notes:

%AppData% is a variable that refers to the file system directory that serves as a common repository for application-specific data. A typical path is C:\Documents and Settings\[UserName]\Application Data.
%LocalSettings% is a variable that specifies the current user's local settings folder. By default, this is C:\Documents and Settings\[UserName]\Local Settings (Windows NT/2000/XP).
%ProgramFiles% is a variable that refers to the Program Files folder. A typical path is C:\Program Files.
%Programs% is a variable that refers to the file system directory that contains the user's program groups. A typical path is C:\Documents and Settings\[UserName]\Start Menu\Programs.
%System% is a variable that refers to the System folder. By default, this is C:\Windows\System (Windows 95/98/Me), C:\Winnt\System32 (Windows NT/2000), or C:\Windows\System32 (Windows XP).
%Temp% is a variable that refers to the temporary folder in the short path form. By default, this is C:\Documents and Settings\[UserName]\Local Settings\Temp\ (Windows NT/2000/XP).
%Windir% is a variable that refers to the Windows installation folder. By default, this is C:\Windows or C:\Winnt.