When launched, Backdoor.Win32.ImgDrop extracts a file from its body with a name of the format winXXX32.dll to the %system% folder, and adds the file to the list of programs that are automatically run at startup of the operating system.
Geographical distribution of attacks by the Backdoor.Win32.ImgDrop family
Top 10 countries with most attacked users (% of total attacks)
* Percentage among all unique Kaspersky users worldwide attacked by this malware
|Find out the statistics of the threats spreading in your region|