ThreatExpert's Statistics for Mal/UnkPack-Fam [Sophos]:

Mal/UnkPack-Fam [Sophos] is also known as:

Threat Alias	Number of Incidents
Mal/Generic-A [Sophos]	158
Trojan Horse [Symantec]	117
Generic.PWS.Games [Ikarus]	114
Generic.dx [McAfee]	112
Infostealer.Gampass [Symantec]	98
Trojan-GameThief.Win32.OnLineGames [Ikarus]	93
PWS:Win32/Lolyda.AD [Microsoft]	78
Infostealer [Symantec]	72
Trojan:Win32/Perkesh.A [Microsoft]	72
Trojan.Win32.Hooker [Ikarus]	68
Trojan.Win32.Hooker.ae [Kaspersky Lab]	68
Trojan.Hooker!sd6 [PC Tools]	64
Backdoor.Bifrose [Symantec]	63
Trojan-GameThief.Win32.OnLineGames.uwtl [Kaspersky Lab]	59
Win-Trojan/OnlineGameHack.3584.J [AhnLab]	52
Constructor/Bifrose.1466368 [AhnLab]	44
Backdoor.Trojan [Symantec]	43
Constructor.Win32.Bifrose.j [Kaspersky Lab]	43
Backdoor.Win32.HacDef.h [Kaspersky Lab]	42
Constructor.Bifrose!sd6 [PC Tools]	41
Backdoor.HackDefender [Symantec]	39
HackerDefender [McAfee]	39
VirTool:WinNT/Hackdef.BJ [Microsoft]	39
W32.SillyFDC [Symantec]	35
Win-Trojan/Xema.variant [AhnLab]	35
Constructor:Win32/Bifrose.A [Microsoft]	34
Generic PWS.ak [McAfee]	33
Virus.Win32.Bifrose [Ikarus]	31
Backdoor.HacDef!sd6 [PC Tools]	30
Trojan.Packed.NsAnti [Symantec]	29
Trojan.Win32.Inhoo [Ikarus]	29
BackDoor-CEP.gen.au [McAfee]	28
TrojanDownloader:Win32/Frethog.C [Microsoft]	28
Win32/IRCBot.worm.variant [AhnLab]	28
Backdoor.Win32.HacDef [Ikarus]	27
PWS:Win32/Frethog.gen!B [Microsoft]	25
Backdoor.Win32.IRCBot [Ikarus]	24
BackDoor-DVR [McAfee]	24
Win-Trojan/HackDef.3156 [AhnLab]	24
Backdoor.Bifrose!sd6 [PC Tools]	21
PWS-Mmorpg!h [McAfee]	20
Email-Worm.Win32.Bagle.adk [Kaspersky Lab]	19
Worm.Win32.AutoRun [Ikarus]	19
Backdoor:Win32/Bifrose [Microsoft]	18
Email-Worm.Bagle!sd6 [PC Tools]	18
Worm.AutoRun!sd6 [PC Tools]	18
Email-Worm.Win32.Bagle [Ikarus]	16
Packed.Win32.Krap [Ikarus]	16
Trojan-Dropper.Agent [Ikarus]	16
Trojan-Dropper.Win32.Flystud [Ikarus]	16
W32.Gammima.AG [Symantec]	16
W32/Autorun.worm.gen [McAfee]	16
Backdoor.IRCBot!sd6 [PC Tools]	15
VirTool:Win32/CeeInject.gen!R [Microsoft]	15
PWS:Win32/Lolyda.AF [Microsoft]	14
PWS-Gamania.gen.c [McAfee]	14
W32/Autorun.worm.dp [McAfee]	14
Worm:Win32/Autorun.DM [Microsoft]	14
Generic Downloader.ab [McAfee]	13
PWS:Win32/OnLineGames.ABK [Microsoft]	13
Trojan.Win32.Agent2 [Ikarus]	13
Trojan.Win32.Agent2.fvv [Kaspersky Lab]	13
Trojan:Win32/Meredrop [Microsoft]	13
Trojan-Spy.Gampass!sd6 [PC Tools]	13
Backdoor.Win32.IRCBot.irl [Kaspersky Lab]	12
Backdoor.Win32.IRCBot.jvw [Kaspersky Lab]	12
BKDR_HACDEF.FZ [Trend Micro]	12
Gen.Trojan [Ikarus]	12
Generic Downloader.x [McAfee]	12
Mal/Bifrose-S [Sophos]	12
Mal/Bifrose-S, Mal/Bifrose-S [Sophos]	12
Packed.Win32.Krap.b [Kaspersky Lab]	12
Trojan-GameThief.Win32.OnLineGames.uyhx [Kaspersky Lab]	12
Win-Trojan/Agent.172032.DJ [AhnLab]	12
Worm.Win32.AutoRun.eae [Kaspersky Lab]	12
Mal/Inject-M [Sophos]	11
New Malware.ix [McAfee]	11
TROJ_AGENT.YOS [Trend Micro]	11
Trojan.Crypt [Ikarus]	11
TrojanDropper:Win32/Opachki.A [Microsoft]	11
VirTool:Win32/Vtub.WL [Microsoft]	11
Worm.Win32.Viking [Ikarus]	11
Backdoor.Win32.SdBot [Ikarus]	10
Mal/EncPk-IG [Sophos]	10
Trojan-Dropper.Delf [Ikarus]	10
Adware:Win32/IEHlpr [Microsoft]	9
Backdoor.Hacdef!ct [PC Tools]	9
Downloader [Symantec]	9
PWS-Banker.dll [McAfee]	9
PWS-Mmorpg!i [McAfee]	9
Trojan.Adclicker [Symantec]	9
Trojan.Agent2!sd6 [PC Tools]	9
Trojan-Downloader.Win32.Agent.bjnr [Kaspersky Lab]	9
Trojan-Dropper [Ikarus]	9
Trojan-GameThief.Win32.Magania.ajqe [Kaspersky Lab]	9
Trojan-GameThief.Win32.OnLineGames.blxt [Kaspersky Lab]	9
Trojan-GameThief.Win32.OnLineGames.uwuj [Kaspersky Lab]	9
Trojan-Spy.Win32.Agent [Ikarus]	9
Win-Trojan/Magania.86016.Q [AhnLab]	9
Backdoor.Win32.Bifrose.acci [Kaspersky Lab]	8

Mal/UnkPack-Fam [Sophos] has the following possible countries of origin:

Origin		Number of Incidents
	China	46
	Russian Federation	44
	Sweden	16
	Brazil	6
	Germany	6
	Ukraine	6
	Australia	2
	France	1
	Poland	1
	Portugal	1
	Spain	1
	Thailand	1
	United Kingdom	1

Mal/UnkPack-Fam [Sophos] is known to be created as:

%AppData%\bifrost\server.exe

%FontsDir%\33a76000.exe

%FontsDir%\comres.dll

%FontsDir%\comres1.dll

%Profiles%\saad\desktop\ns.exe

%ProgramFiles%\ad muncher\admunch.exe

%ProgramFiles%\antivirusxp\antivirusxp.exe

%ProgramFiles%\bbifros.exe

%ProgramFiles%\bifrost\server.exe

%ProgramFiles%\common files\svchost.exe

%ProgramFiles%\ctf32\ctf32.exe

%ProgramFiles%\fvb332h7a.exe.exe

%ProgramFiles%\h4b3v24f\8abyqi2c9.exe

%ProgramFiles%\internet explorer\connection wizard\ereree.exe

%ProgramFiles%\internet explorer\iedw.exe.exe

%ProgramFiles%\internet explorer\iexplore.exe.exe

%ProgramFiles%\internet explorer\iexplorer.exe

%ProgramFiles%\messenger\msmsgs.exe.exe

%ProgramFiles%\mia20qv6u0\a7lt8xbg88.exe

%ProgramFiles%\mia20qv6u0\a7lt8xbg88.exe.exe

%ProgramFiles%\microsoft common\svchost.exe

%ProgramFiles%\movie maker\wmv2avi.exe

%ProgramFiles%\msn\msncorefiles\install\msnsusii.exe.exe

%ProgramFiles%\msn\msnia\msniasvc.exe.exe

%ProgramFiles%\msn\msninstaller\msninst.exe.exe

%ProgramFiles%\netmeeting\cb32.exe.exe

%ProgramFiles%\original\bifrost1.2d\bifrost1.2d.exe

%ProgramFiles%\outlook express\msimn.exe.exe

%ProgramFiles%\svchost.exe

%ProgramFiles%\web publish\wpwiz.exe.exe

%ProgramFiles%\windows media player\migrate.exe.exe

%ProgramFiles%\windows nt\accessories\wordpad.exe.exe

%ProgramFiles%\windows nt\dialer.exe.exe

%ProgramFiles%\winpcap\rpcapd.exe.exe

%Programs%\startup\chkdisk.dll

%System%\.00cd1a40\00cd1a40.exe

%System%\090514-1-3.exe

%System%\appwinproc.dll

%System%\autochk.dll

%System%\bgdferw0.dll

%System%\bgdferw1.dll

%System%\bgotrtu0.dll

%System%\bgotrtu1.dll

%System%\bitkv0.dll

%System%\cidaemon32.exe

%System%\ciuytr0.dll

%System%\ciuytr1.dll

%System%\ciuytr2.dll

%System%\ckvo0.dll

%System%\ckvo1.dll

%System%\ckvo2.dll

%System%\dbbin.sys

%System%\dd33d3\00c3ac.exe

%System%\digiwet.dll

%System%\drivers\kvsys.sys

%System%\dse235rgd0.dll

%System%\dse235rgd1.dll

%System%\e2v80199.exe

%System%\frmwrk32.exe

%System%\google earth\google.exe

%System%\hgkjghg0.dll

%System%\hgkjghg1.dll

%System%\ipfwrd.sys

%System%\javasec1.exe

%System%\jh9fgo4ksdgf.dll

%System%\kacsde.exe

%System%\kavo0.dll

%System%\kavo1.dll

%System%\kavo2.dll

%System%\kerneldrv.exe

%System%\lhgjyit0.dll

%System%\lhgjyit1.dll

%System%\lhgjyit2.dll

%System%\libuissn.exe

%System%\lphc35dj0erc1.exe

%System%\mkfght0.dll

%System%\mkfght2.dll

%System%\mljcyqqi.dll

%System%\msdvdr.sys

%System%\msflxgrd.ocx.dll

%System%\msnclicfg.exe

%System%\msnmsgr.exe

%System%\mvrovncei.exe

%System%\nessery.sys

%System%\nmdfgds0.dll

%System%\nmdfgds1.dll

%System%\nmdfgds2.dll

%System%\olhrwef.exe

%System%\otrewe0.dll

%System%\otrewe1.dll

%System%\qomdctun.dll

%System%\ramdma.sys

%System%\resdll.dll

%System%\stemp_01.exe

%System%\svchost.exe:ext.exe

%System%\sys0_32.dll

%System%\sysrest32.exe

%System%\tcim.exe

%System%\tcpcon.dll

%System%\uret463.exe

Notes:

%AppData% is a variable that refers to the file system directory that serves as a common repository for application-specific data. A typical path is C:\Documents and Settings\[UserName]\Application Data.
%FontsDir% is a variable that refers to a virtual folder containing fonts. A typical path is C:\Windows\Fonts.
%Profiles% is a variable that refers to the file system directory containing user profile folders. A typical path is C:\Documents and Settings.
%ProgramFiles% is a variable that refers to the Program Files folder. A typical path is C:\Program Files.
%Programs% is a variable that refers to the file system directory that contains the user's program groups. A typical path is C:\Documents and Settings\[UserName]\Start Menu\Programs.
%System% is a variable that refers to the System folder. By default, this is C:\Windows\System (Windows 95/98/Me), C:\Winnt\System32 (Windows NT/2000), or C:\Windows\System32 (Windows XP).