Solutions for:
Home Products
Small Business
Medium Business
Enterprise
Vulnerabilities Threats
Home Threats Backdoor BAT

Backdoor.BAT.Teldoor.p

Update Date
12/28/2023

Class: Backdoor

Backdoors are designed to give malicious users remote control over an infected computer. In terms of functionality, Backdoors are similar to many administration systems designed and distributed by software developers. These types of malicious programs make it possible to do anything the author wants on the infected computer: send and receive files, launch files or delete them, display messages, delete data, reboot the computer, etc. The programs in this category are often used in order to unite a group of victim computers and form a botnet or zombie network. This gives malicious users centralized control over an army of infected computers which can then be used for criminal purposes. There is also a group of Backdoors which are capable of spreading via networks and infecting other computers as Net-Worms do. The difference is that such Backdoors do not spread automatically (as Net-Worms do), but only upon a special “command” from the malicious user that controls them.

Read more

Platform: BAT

No platform description

Family: Teldoor

No family description

Examples

BD846C30026A61F75FF7F98DAF3C0336
5D6D2C9A9712E7F06EBDF6C533488569
38F23DBF6FCC9FC9286AC25B4626C309
320B697FF8AB5EBCB834D9858CC14E79
352B3D3D4C7431175560DF6F810EC887

Tactics and Techniques: Mitre*

TA0005
Defense Evasion

Adversaries may attempt to manipulate features of their artifacts to make them appear legitimate or benign to users and/or security tools. Masquerading occurs when the name or location of an object, legitimate or malicious, is manipulated or abused for the sake of evading defenses and observation. This may include manipulating file metadata, tricking users into misidentifying the file type, and giving legitimate task or service names.


T1036
Masquerading

Adversaries may attempt to manipulate features of their artifacts to make them appear legitimate or benign to users and/or security tools. Masquerading occurs when the name or location of an object, legitimate or malicious, is manipulated or abused for the sake of evading defenses and observation. This may include manipulating file metadata, tricking users into misidentifying the file type, and giving legitimate task or service names.


* © 2025 The MITRE Corporation. This work is reproduced and distributed with the permission of The MITRE Corporation.

Kaspersky Next
Let’s go Next: redefine your business’s cybersecurity
Learn more
New Kaspersky!
Your digital life deserves complete protection!
Learn more
Related articles
03 December 2025
Securelist
Shai Hulud 2.0, now with a wiper flavor
03 December 2025
Securelist
Exploits and vulnerabilities in Q3 2025
02 December 2025
Securelist
Kaspersky Security Bulletin 2025. Statistics
28 November 2025
Securelist
Tomiris wreaks Havoc: New tools and techniques of the APT group
26 November 2025
Securelist
Old tech, new vulnerabilities: NTLM abuse, ongoing exploitation in 2025
24 November 2025
Securelist
To buy or not to buy: How cybercriminals capitalize on Black Friday
Found an inaccuracy in the description of this vulnerability?
If you found a new Threat or Vulnerability, please, let us know by email:
newvirus@kaspersky.com
Found a new Threat or Vulnerability?
If you found a new Threat or Vulnerability, please, let us know by email:
newvirus@kaspersky.com
Solutions for
Home Products
Small Business
Medium Business
Enterprise
Select language
Sorting
Threat
Confirm changes?
Your message has been sent successfully.