Threat Search: 

ThreatExpert's Statistics for Constructor/Bifrose.1466368 [AhnLab]:

Constructor/Bifrose.1466368 [AhnLab] is also known as:
Threat AliasNumber of Incidents
Constructor.Win32.Bifrose.j [Kaspersky Lab]646
Virus.Win32.Bifrose [Ikarus]462
Constructor:Win32/Bifrose.A [Microsoft]423
Backdoor.Bifrose [Symantec]409
Mal/Bifrose-S [Sophos]344
BackDoor-CEP.gen.au [McAfee]311
Constructor.Bifrose!sd6 [PC Tools]179
Backdoor.Bifrose!sd6 [PC Tools]139
Backdoor:Win32/Bifrose [Microsoft]109
Mal/Generic-E, Mal/Bifrose-S [Sophos]76
Mal/Bifrose-S, Mal/Bifrose-S [Sophos]75
Mal/Generic-A [Sophos]69
Constructor.Win32.Bifrose.gy [Kaspersky Lab]66
Mal/Generic-E, Mal/Bifrose-S, Mal/Bifrose-S [Sophos]61
Backdoor:Win32/Bifrose.gen!B [Microsoft]47
Mal/UnkPack-Fam [Sophos]44
Backdoor.Bifrose [PC Tools]36
Backdoor.Trojan [PC Tools]16
Backdoor.Trojan [Symantec]16
W32.Sality.AE [Symantec]8
Backdoor:Win32/Trenk!rts [Microsoft]7
Virus:Win32/Sality.AM [Microsoft]7
W32/Sality.gen [McAfee]7
Constructor.Win32.Bifrose [Ikarus]6
W32/Sality-AM [Sophos]6
Backdoor.Win32.Bifrose [Ikarus]5
Virus.Win32.Sality.z [Kaspersky Lab]5
Virus:Win32/Sality.G [Microsoft]5
Backdoor-CEP [McAfee]4
BackDoor-CEP!cg [McAfee]4
PE_SALITY.AE [Trend Micro]4
PE_SALITY.EK [Trend Micro]4
Virus.Win32.Sality.l [Kaspersky Lab]4
W32.HLLP.Sality.O [Symantec]4
W32/Sality-I [Sophos]4
Win32.Sality.AM.Gen [PC Tools]3
Mal/Sality-A [Sophos]2
PE_SALITY.EN [Trend Micro]2
Trojan-Dropper.Win32.Agent.fdl [Kaspersky Lab]2
W32/Sality.n [McAfee]2
Win32.Sality.L [PC Tools]2
Backdoor.Graybird [PC Tools]1
Backdoor.Graybird [Symantec]1
Backdoor.Win32.Bifrose.aevx [Kaspersky Lab]1
Backdoor.Win32.Bifrose.bobk [Kaspersky Lab]1
Backdoor:Win32/Poison.M [Microsoft]1
Backdoor-CEP!a [McAfee]1
BackDoor-CEP!bo [McAfee]1
BackDoor-CEP!hi [McAfee]1
BackDoor-CEP!ic [McAfee]1
BackDoor-CEP!jn [McAfee]1
Backdoor-CEP!k [McAfee]1
BackDoor-CEP!rm [McAfee]1
Constructor.Win32.Bifrose.ey [Kaspersky Lab]1
Mal/Bifrose-S, Mal/Sality-C [Sophos]1
Malware.Sality [PC Tools]1
New Malware.aq [McAfee]1
PE_SALITY.AZ [Trend Micro]1
VirTool:Win32/Injector.gen!W [Microsoft]1
Virus.Win32.Sality.aa [Kaspersky Lab]1
Virus.Win32.Sality.ae [Kaspersky Lab]1
W32/Sality.gen.b [McAfee]1
W32/Sality.s [McAfee]1

Constructor/Bifrose.1466368 [AhnLab] has the following possible countries of origin:
OriginNumber of Incidents
Sweden434
Saudi Arabia1

Constructor/Bifrose.1466368 [AhnLab] is known to be created as:
%LocalSettings%\tempbifrost.exe
%Profiles%\final.exe
%Profiles%\saad\desktop\ns.exe
%ProgramFiles%\bifrost\bifrost.exe
%ProgramFiles%\bifrost1.3d_privat.exe
%ProgramFiles%\original\bifrost1.2d\bifrost1.2d.exe
%System%\bifrost.exe
%System%\ramadan.exe
%Temp%\bifrost.exe
%Temp%\bifrost_hakatak.exe
%Temp%\bifrost-dz.exe
%Temp%\bifrost-tryag\bifrost-tryag.exe
%Temp%\dx_hacker.exe
%Temp%\file1.exe
%Temp%\ixp000.tmp\biforst.exe
%Temp%\ixp000.tmp\bifrost.exe
%Temp%\ixp000.tmp\moonwalk.exe
%Temp%\ixp000.tmp\s1.exe
%Temp%\rarsfx0\2.exe
%Temp%\s3od.exe
%Temp%\temp.exe
%Temp%\test1.exe
%Temp%\tmp1.exe
%Temp%\virus_pal.exe
%Temp%\wrjdrkudsx.exe
%Windir%\temp\bifrost.exe
c:\bifrost.exe
c:\extracted\bifrost.exe
c:\vbspiders.com.exe
Notes:
  • %LocalSettings% is a variable that specifies the current user's local settings folder. By default, this is C:\Documents and Settings\[UserName]\Local Settings (Windows NT/2000/XP).
  • %Profiles% is a variable that refers to the file system directory containing user profile folders. A typical path is C:\Documents and Settings.
  • %ProgramFiles% is a variable that refers to the Program Files folder. A typical path is C:\Program Files.
  • %System% is a variable that refers to the System folder. By default, this is C:\Windows\System (Windows 95/98/Me), C:\Winnt\System32 (Windows NT/2000), or C:\Windows\System32 (Windows XP).
  • %Temp% is a variable that refers to the temporary folder in the short path form. By default, this is C:\Documents and Settings\[UserName]\Local Settings\Temp\ (Windows NT/2000/XP).
  • %Windir% is a variable that refers to the Windows installation folder. By default, this is C:\Windows or C:\Winnt.