Home / malware Backdoor.Pygeecat
First posted on 29 January 2016.
Source: SymantecAliases :
There are no other names known for Backdoor.Pygeecat.
Explanation :
The Trojan may arrive on the compromised computer after being downloaded by a compromised Microsoft Office file attached to an email.
The Trojan is a modified Python script that has been compiled into an executable binary.
The Trojan opens a back door on the compromised computer, and uses Gmail to send information and receive commands.
The Trojan may perform the following actions:
Download filesExecute shell commandsSend emails to the attackers through Gmail
The Trojan may send the following information back to the attackers:
Processor architectureEnvironment variablesLast update 29 January 2016
