Clase: Trojan-Dropper
Los programas Trojan-Dropper están diseñados para instalar en secreto programas maliciosos integrados en su código en las computadoras de las víctimas. Este tipo de programa malicioso generalmente guarda un rango de archivos en el disco de la víctima (generalmente en el directorio de Windows, el directorio del sistema de Windows, el directorio temporal, etc.) y los lanza sin ninguna notificación (o con notificación falsa de un error de archivo, versión obsoleta del sistema operativo, etc.). Tales programas son utilizados por los piratas informáticos para: instalar en secreto programas troyanos y / o virus para evitar que los programas maliciosos conocidos sean detectados por las soluciones antivirus; no todos los programas antivirus son capaces de escanear todos los componentes dentro de este tipo de troyanos.Más información
Plataforma: Win32
Win32 es una API en sistemas operativos basados en Windows NT (Windows XP, Windows 7, etc.) que admite la ejecución de aplicaciones de 32 bits. Una de las plataformas de programación más extendidas en el mundo.Familia: Trojan-Dropper.Win32.Dapato
No family descriptionExamples
2374773A3AF183C42D2B7186E6A2F462Tactics and Techniques: Mitre*
TA0005
Defense Evasion
The adversary is trying to avoid being detected. Defense Evasion consists of techniques that adversaries use to avoid detection throughout their compromise. Techniques used for defense evasion include uninstalling/disabling security software or obfuscating/encrypting data and scripts. Adversaries also leverage and abuse trusted processes to hide and masquerade their malware. Other tactics' techniques are cross-listed here when those techniques include the added benefit of subverting defenses.
T1622
Debugger Evasion
Adversaries may employ various means to detect and avoid debuggers. Debuggers are typically used by defenders to trace and/or analyze the execution of potential malware payloads.
TA0007
Discovery
The adversary is trying to figure out your environment. Discovery consists of techniques an adversary may use to gain knowledge about the system and internal network. These techniques help adversaries observe the environment and orient themselves before deciding how to act. They also allow adversaries to explore what they can control and what's around their entry point in order to discover how it could benefit their current objective. Native operating system tools are often used toward this post-compromise information-gathering objective.
T1622
Debugger Evasion
Adversaries may employ various means to detect and avoid debuggers. Debuggers are typically used by defenders to trace and/or analyze the execution of potential malware payloads.
* © 2026 The MITRE Corporation. This work is reproduced and distributed with the permission of The MITRE Corporation.