We're gradually updating threat actor names in our reports to align with the new weather-themed taxonomy. Learn about Microsoft threat actor names
TrojanDropper:Win32/Nuwar.B
Detected by Microsoft Defender Antivirus
Aliases: Email-Worm.Win32.Zhelatin.a (Kaspersky) Downloader-BAI.gen (McAfee) Backdoor.Parla (Sunbelt Software)
Summary
TrojanDropper:Win32/Nuwar.B is a Trojan that drops and installs Backdoor:Win32/Nuwar.A onto an infected computer.
Backdoor:Win32/Nuwar.A is a Backdoor Trojan that allows unauthorized access to an infected computer. The Trojan receives commands indirectly from a remote attacker via its connection to a malicious peer-to-peer network. This Trojan also contains advanced stealth functionality that allows it to hide particular files, registry entries and registry values.
Backdoor:Win32/Nuwar.A may download and install additional malicious software, thus manual removal is not recommended. To detect and remove this Trojan and other malicious software that may have been installed, run a full-system scan with an up-to-date antivirus product such as the Microsoft Safety Scanner (http://go.microsoft.com/fwlink/?LinkId=212742). For more information, visit http://www.microsoft.com/athome/security/downloads/default.mspx.
Follow us
