Threat Search: 

ThreatExpert's Statistics for Trojan.Win32.Agent.btmu [Kaspersky Lab]:

Trojan.Win32.Agent.btmu [Kaspersky Lab] is also known as:
Threat AliasNumber of Incidents
Mal/EncPk-FH [Sophos]24
Trojan:Win32/Midgare.A [Microsoft]24
Trojan.Win32.Midgare [Ikarus]23
Trojan Horse [Symantec]9
Backdoor-CEP.gen.i [McAfee]6
Backdoor.Bifrose [Symantec]4
Infostealer [Symantec]4
Trojan.Midgare.hhn [PC Tools]3
Troj/Gernid-Gen [Sophos]2
Trojan.Agent!sd6 [PC Tools]2
TrojanDropper:Win32/Gernidru.gen!A [Microsoft]2
Win-Trojan/Agent.32637.E [AhnLab]2
Win-Trojan/Agent.57840.B [AhnLab]2
Win-Trojan/Agent.57863 [AhnLab]2
Backdoor.Win32.Bifrose [Ikarus]1
Backdoor.Win32.PoisonIvy [Ikarus]1
Backdoor-CEP [McAfee]1
Backdoor-CEP!a [McAfee]1
BackDoor-CEP!hv.l [McAfee]1
Generic Dropper!a [McAfee]1
Generic.dx [McAfee]1
Trojan.PWS.PVStealth.B [PC Tools]1
Trojan-PSW.Win32.PVStealth.b [Kaspersky Lab]1
Trojan-PWS.Win32.PVStealth [Ikarus]1
Virus.Win32.LdPinch [Ikarus]1
Win-Trojan/Agent.34050.B [AhnLab]1

Trojan.Win32.Agent.btmu [Kaspersky Lab] has the following possible countries of origin:
OriginNumber of Incidents
Saudi Arabia2
China1
France1
Germany1
Russian Federation1

Trojan.Win32.Agent.btmu [Kaspersky Lab] is known to be created as:
%AppData%\bifrost\server.exe
%System%\bifrost\server.exe
%System%\repay\replaye.exe
%System%\rmben\system.exe
%System%\winosu\server.exe
%Temp%\desktop.exe
%Temp%\instal.exe
%Temp%\ixp000.tmp\coffin.exe
%Temp%\ixp000.tmp\sn1.exe
%Temp%\winpcap_4_0.exe.exe
%Windir%\bifrost\server.exe
c:\bifrost\server.exe
Notes:
  • %AppData% is a variable that refers to the file system directory that serves as a common repository for application-specific data. A typical path is C:\Documents and Settings\[UserName]\Application Data.
  • %System% is a variable that refers to the System folder. By default, this is C:\Windows\System (Windows 95/98/Me), C:\Winnt\System32 (Windows NT/2000), or C:\Windows\System32 (Windows XP).
  • %Temp% is a variable that refers to the temporary folder in the short path form. By default, this is C:\Documents and Settings\[UserName]\Local Settings\Temp\ (Windows NT/2000/XP).
  • %Windir% is a variable that refers to the Windows installation folder. By default, this is C:\Windows or C:\Winnt.