Bird_banner_small4
Backdoor.MSIL.TPDShell.A
TSL ID TSL20170209-06
Severity High
Description

Backdoor.MSIL.TPDShell.A is a Backdoor that targets the Windows platform. This malware downloads and installs the tor (The Onion Router) client and configures it to create a "hidden service" on the local system. The local system's hidden service address is then sent to a remote controller. A shell is spawned once a user attempts to access the bound hidden service port.

Affected Products
  • Microsoft Windows All Versions
File Hashes
MD5:
  • 22C2A9DE2A9B4238A4E770E2A6F1B9DF
SHA1:
  • 085FBE81F2CD097C8993CB948A2ED53853156CAC
Related Threats TSL20170811-03 - Backdoor.MSIL.TPDShell.B