We're gradually updating threat actor names in our reports to align with the new weather-themed taxonomy. Learn about Microsoft threat actor names
TrojanDropper:Win32/Hupigon
Detected by Microsoft Defender Antivirus
Aliases: Win32/Pigeon (CA) BKDR_GRAYBIRD (Trend Micro) Backdoor.Win32.Hupigon (Kaspersky) W32/Hupigon (Norman) Troj/Feutel (Sophos)
Summary
TrojanDropper:Win32/Hupigon is component of Win32/Hupigon. TrojanDropper:Win32/Hupigon copies itself to the system folder and runs itself from there. It then drops the other Hupigon components, registers the primary Backdoor component as a service, and injects the stealth / password stealer components into other processes using CreateRemoteThread. For more information, see the encyclopedia entry for Win32/Hupigon
Manual removal is not recommended for this threat. Use the Microsoft Malicious Software Removal Tool, Microsoft Security Essentials, Microsoft Safety Scanner, or another up-to-date scanning and removal tool to detect and remove this threat and other unwanted software from your computer. For more information on Microsoft security products, see http://www.microsoft.com/protect/products/computer/default.mspx.
Follow us
