Threat Search: 

ThreatExpert's Statistics for Mal/Bifrose-S [Sophos]:

Mal/Bifrose-S [Sophos] is also known as:
Threat AliasNumber of Incidents
Backdoor.Bifrose [Symantec]539
Constructor.Win32.Bifrose.j [Kaspersky Lab]538
Constructor/Bifrose.1466368 [AhnLab]344
Virus.Win32.Bifrose [Ikarus]331
Constructor:Win32/Bifrose.A [Microsoft]313
Backdoor.Win32.Bifrose [Ikarus]280
BackDoor-CEP [McAfee]227
Backdoor.Bifrose!sd6 [PC Tools]165
BackDoor-CEP.gen.au [McAfee]159
Mal/Generic-A [Sophos]149
Backdoor:Win32/Bifrose [Microsoft]126
Win-Trojan/Xema.variant [AhnLab]110
Constructor.Bifrose!sd6 [PC Tools]91
Backdoor.Bifrose [PC Tools]86
Backdoor.Win32.Bifrose.bwt [Kaspersky Lab]71
Backdoor.Win32.Bifrose.adr [Kaspersky Lab]69
Win-Trojan/Bifrose.1843200 [AhnLab]66
Backdoor:Win32/Bifrose.FJ [Microsoft]64
Backdoor:Win32/Bifrose.gen!B [Microsoft]59
Infostealer [Symantec]55
Backdoor.Bifrose.BJC [PC Tools]51
Mal/Bifrose-S, Mal/Bifrose-S [Sophos]47
Win-Trojan/Bifrose.621568 [AhnLab]40
Constructor.generic!ct [PC Tools]28
Constructor/Bifrose.1466056 [AhnLab]24
Constructor.Win32.Bifrose [Ikarus]21
Constructor.Win32.Bifrose.be [Kaspersky Lab]20
Win-Trojan/Bifrose.1441792 [AhnLab]20
Constructor.Win32.Bifrose.d [Kaspersky Lab]18
Backdoor.Win32.Bifrose.aleu [Kaspersky Lab]17
Constructor/Bifrose.723456 [AhnLab]17
Constructor/Bifrose.1905098 [AhnLab]16
Packed.Win32.Black.a [Kaspersky Lab]13
Constructor.Win32.Bifrose.gy [Kaspersky Lab]12
Constructor/Bifrose.753664 [AhnLab]12
Mal/Generic-E, Mal/Bifrose-S, Mal/Bifrose-S [Sophos]12
Mal/UnkPack-Fam [Sophos]12
Constructor.Bifrose.FLX [PC Tools]10
Mal/Generic-E, Mal/Bifrose-S [Sophos]10
Backdoor.Win32.Bifrose.bkq [Kaspersky Lab]9
Downloader.MisleadApp [Symantec]9
Trojan:Win32/Meredrop [Microsoft]9
Backdoor.Trojan [PC Tools]7
Backdoor.Trojan [Symantec]7
Constructor/Bifrose.1914368 [AhnLab]7
Backdoor-CEP [McAfee]6
Constructor.Win32.Bifrose.ck [Kaspersky Lab]6
Constructor.Win32.Bifrose.l [Kaspersky Lab]6
Generic Downloader.x [McAfee]6
Trojan-Downloader.MisleadApp!sd6 [PC Tools]6
Backdoor:Win32/Trenk!rts [Microsoft]5
New Malware.eh [McAfee]5
Win-Trojan/Bifrose.1951744 [AhnLab]5
Backdoor.Bifrose!ct [PC Tools]4
Backdoor.Bifrose.DID [PC Tools]4
BKDR_BIFROSE.YW [Trend Micro]4
Constructor.Win32.Bifrose.bn [Kaspersky Lab]4
Mal/Mdrop-Fam [Sophos]4
Virus.Win32.Bifrose.BN [Ikarus]4
Win-Trojan/Bifrose.1985024 [AhnLab]4
Constructor.Bifrose.CQE [PC Tools]3
Constructor.Win32.Bifrose.v [Kaspersky Lab]3
Constructor/Bifrose.1914421 [AhnLab]3
Cryp_PESpin [Trend Micro]3
Generic Dropper [McAfee]3
Win-Trojan/Bifrose.1290240 [AhnLab]3
Win-Trojan/Bifrose.2017280 [AhnLab]3
Win-Trojan/Black.1871872.E [AhnLab]3
Win-Trojan/Black.1875968 [AhnLab]3
Backdoor:Win32/Poison.M [Microsoft]2
BackDoor-CEP!cg [McAfee]2
Constructor.Win32.Bifrose.bw [Kaspersky Lab]2
Constructor.Win32.Bifrose.dr [Kaspersky Lab]2
Constructor.Win32.Bifrose.jh [Kaspersky Lab]2
Constructor.Win32.Bifrose.m [Kaspersky Lab]2
Constructor/Bifrose.1356800 [AhnLab]2
Constructor/Bifrose.1922374 [AhnLab]2
Trojan-Dropper.Win32.Agent.fdl [Kaspersky Lab]2
Trojan-Spy.Win32.Banker.ark [Ikarus]2
Virus:Win32/Sality.G [Microsoft]2
Win-Trojan/Bifrose.1425408 [AhnLab]2
Worm:Win32/Rebhip.A [Microsoft]2
Backdoor.Bifrose.FBO [PC Tools]1
Backdoor.Sdbot [Symantec]1
Backdoor.Win32.Bifrose.aekk [Kaspersky Lab]1
Backdoor.Win32.Bifrose.akxp [Kaspersky Lab]1
Backdoor.Win32.Bifrose.aozs [Kaspersky Lab]1
Backdoor.Win32.Bifrose.asqa [Kaspersky Lab]1
Backdoor.Win32.Bifrose.byel [Kaspersky Lab]1
Backdoor.Win32.Bifrose.fpb [Kaspersky Lab]1
Backdoor.Win32.Bifrose.fqm [Kaspersky Lab]1
Backdoor.Win32.Bifrose.szw [Kaspersky Lab]1
BackDoor-CEP!ba [McAfee]1
BackDoor-CEP!bo [McAfee]1
BackDoor-CEP!fq [McAfee]1
Backdoor-CEP!i [McAfee]1
Backdoor-CEP!k [McAfee]1
BackDoor-CEP!v [McAfee]1
Constructor.Win32.Bifrose.aw [Kaspersky Lab]1
Constructor.Win32.Bifrose.ek [Kaspersky Lab]1

Mal/Bifrose-S [Sophos] has the following possible countries of origin:
OriginNumber of Incidents
Sweden398
Spain2
Saudi Arabia1

Mal/Bifrose-S [Sophos] is known to be created as:
%LocalSettings%\tempbifrost.exe
%Profiles%\bifrost.exe
%Profiles%\final.exe
%Profiles%\saad\desktop\ns.exe
%ProgramFiles%\bbifros.exe
%ProgramFiles%\bifrost\bifrost.exe
%ProgramFiles%\bifrost1.3d_privat.exe
%ProgramFiles%\original\bifrost1.2d\bifrost1.2d.exe
%ProgramFiles%\windows\bifrost.exe
%ProgramFiles%\winrar\bifrost.exe
%System%\bifrost.exe
%System%\bifrost\bifrost.exe
%System%\bifrost-x0ne.exe
%System%\game_over.exe
%System%\lncom_.exe
%System%\stemp_01.exe
%Temp%\1.exe
%Temp%\2.exe
%Temp%\bf.exe
%Temp%\bif.exe
%Temp%\bifrost 1.2.1d\bifrost.exe
%Temp%\bifrost.exe
%Temp%\bifrost\bifrost.exe
%Temp%\bifrost_1.2.1d\bifrost.exe
%Temp%\bifrost1.2.d.exe
%Temp%\bifrost-121-c\bifrost\bifrost.exe
%Temp%\bifrosta.exe
%Temp%\bifrost-dz.exe
%Temp%\bifrost-private-special.exe
%Temp%\bifrost-tryag\bifrost-tryag.exe
%Temp%\dx_hacker.exe
%Temp%\file1.exe
%Temp%\ixp000.tmp\bifrost.exe
%Temp%\ixp000.tmp\s1.exe
%Temp%\jgoqqrdnoi.exe
%Temp%\rarsfx0\bifrost.exe
%Temp%\s3od.exe
%Temp%\tmp1.exe
%Temp%\virus_pal.exe
%Temp%\wrjdrkudsx.exe
%UserProfile%\bifrost.exe
%Windir%\2.exe
%Windir%\bifrost.exe
%Windir%\extracted\bifrost.exe
%Windir%\help\bifrost1.2.1.exe
%Windir%\silent0.exe
%Windir%\temp\bifrost.exe
c:\arquivos de programas\bifrost by dark\bifrost.exe
c:\bifrost.exe
c:\extracted\bifrost.exe
Notes:
  • %LocalSettings% is a variable that specifies the current user's local settings folder. By default, this is C:\Documents and Settings\[UserName]\Local Settings (Windows NT/2000/XP).
  • %Profiles% is a variable that refers to the file system directory containing user profile folders. A typical path is C:\Documents and Settings.
  • %ProgramFiles% is a variable that refers to the Program Files folder. A typical path is C:\Program Files.
  • %System% is a variable that refers to the System folder. By default, this is C:\Windows\System (Windows 95/98/Me), C:\Winnt\System32 (Windows NT/2000), or C:\Windows\System32 (Windows XP).
  • %Temp% is a variable that refers to the temporary folder in the short path form. By default, this is C:\Documents and Settings\[UserName]\Local Settings\Temp\ (Windows NT/2000/XP).
  • %UserProfile% is a variable that specifies the current user's profile folder. By default, this is C:\Documents and Settings\[UserName] (Windows NT/2000/XP).
  • %Windir% is a variable that refers to the Windows installation folder. By default, this is C:\Windows or C:\Winnt.