We're gradually updating threat actor names in our reports to align with the new weather-themed taxonomy. Learn about Microsoft threat actor names
TrojanDownloader:Win32/Ufraie.A
Detected by Microsoft Defender Antivirus
Aliases: Win32/Ufraie.B (CA) Trojan.Win32.Agent.cvos (Kaspersky) Trojan.Agent.NVBS (VirusBuster) Trojan.Proxy.Agent.BBQ (BitDefender) Trojan.Popwin (Symantec)
Summary
TrojanDownloader:Win32/Ufraie.A is a trojan downloader, which retrieves an encoded set of URLs from a control server. It then downloads and executes arbitrary files from the retrieved URLs. In the wild, Win32/Ufraie.A has been observed to download variants from Win32/Bredolab, Win32/Harnig, and other families.
Manual removal is not recommended for this threat. To detect and remove this threat and other malicious software that may have been installed, run a full-system scan with an up-to-date antivirus product such as the Microsoft Safety Scanner (http://go.microsoft.com/fwlink/?LinkId=212742). For more information, see http://www.microsoft.com/protect/computer/viruses/vista.mspx.
Follow us
