Detect Date 09/05/2016
Class Trojan
Platform Win32

Malware of this family uses the computing power of an infected computer in order to crack passwords for blogs and sites running popular content management system (CMS) software such as WordPress and Joomla. The Trojan runs automatically when the operating system starts, and communicates with the criminal’s command-and-control server. The criminal indicates which blogs and sites to target by sending a list to the malware.

Geographical distribution of attacks by the Trojan.Win32.WPCracker family

Geographical distribution of attacks during the period from 05 September 2015 to 05 September 2016

Top 10 countries with most attacked users (% of total attacks)

Country % of users attacked worldwide*
1 Russian Federation 39.59
2 Vietnam 12.08
3 Ukraine 9.33
4 India 5.60
5 Kazakhstan 3.73
6 Brazil 1.96
7 Mexico 1.38
8 Iran 1.28
9 USA 1.28
10 Indonesia 1.18

* Percentage among all unique Kaspersky users worldwide attacked by this malware

Find out the statistics of the threats spreading in your region