Detect Date 09/05/2016
Class Trojan
Platform Win32

Malware of this family uses the computing power of an infected computer in order to crack passwords for blogs and sites running popular content management system (CMS) software such as WordPress and Joomla. The Trojan runs automatically when the operating system starts, and communicates with the criminal’s command-and-control server. The criminal indicates which blogs and sites to target by sending a list to the malware.

Top 10 countries with most attacked users (% of total attacks)

Country % of users attacked worldwide*
1 Russian Federation 39.59
2 Vietnam 12.08
3 Ukraine 9.33
4 India 5.60
5 Kazakhstan 3.73
6 Brazil 1.96
7 Mexico 1.38
8 Iran 1.28
9 USA 1.28
10 Indonesia 1.18

* Percentage among all unique Kaspersky users worldwide attacked by this malware

Find out the statistics of the threats spreading in your region