Bird_banner_small4
Backdoor.MSIL.Deefenware.A
TSL ID TSL20171003-04
Severity High
Description

Backdoor.MSIL.Deefenware.A is a Backdoor that targets Windows platform. This malware send system information to the remote server. It communicates with the remote server and receive commands. It is capable to send system information, kill running processes, send running process list, download and execute a file, run shell commands and more.

Affected Products
  • Microsoft Windows All Versions
File Hashes
MD5:
  • 829A4463B41B02CF0CE5F0F13CB13A25
SHA1:
  • 2E15CBDE67FDA9F1294B46333E10913F8D9B9591
Identifiers
Microsoft Malware Protection Center
TrendMicro
AegisLab
  • TROJ.ATRAPS.GEN!C
Arcabit
  • TROJAN.ZUSY.D3E173
Baidu
  • WIN32.TROJAN.WISDOMEYES.16070401.9500.9964
BitDefender
  • GEN:VARIANT.ZUSY.254323
ESET-NOD32
  • MSIL/AGENT.BCA
Fortinet
  • MSIL/AGENT.BCA!TR
NANO-Antivirus
  • TROJAN.WIN32.AGENT.ESHTFP
Tencent
  • WIN32.TROJAN.ATRAPS.DZTQ
Yandex
  • TROJAN.AGENT!IY+YVAKHMRU
Zillya
  • TROJAN.AGENT.WIN32.818727
References http://www.virusradar.com/en/MSIL_Agent.BCA/description
Related Threats