Malware of this family uses the computing power of an infected computer in order to crack passwords for blogs and sites running popular content management system (CMS) software such as WordPress and Joomla. The Trojan runs automatically when the operating system starts, and communicates with the criminal’s command-and-control server. The criminal indicates which blogs and sites to target by sending a list to the malware.
Geographical distribution of attacks by the Trojan.Win32.WPCracker family
Top 10 countries with most attacked users (% of total attacks)
* Percentage among all unique Kaspersky users worldwide attacked by this malware