Attention: We have transitioned to a new AAD or Microsoft Entra ID from the week of May 20, 2024. In case your tenant requires admin consent, please refer to this document located at Overview of user and admin consent - Microsoft Entra ID | Microsoft Learn and grant access to App ID: 6ba09155-cb24-475b-b24f-b4e28fc74365 with graph permissions for Directory.Read.All and User.Read for continued access. While the app may appear unverified, you can confirm its legitimacy by verifying the App ID provided.
2 entries found.
Win32/Bafruz
Windows Defender Antivirus detects and removes this threat.
This multi-component family of backdoor trojans that can perform a number of different actions on your PC, such as:
- Uninstall antivirus and security products
- Intercept social media webpages such as Facebook and Vkontakte in order to hijack conversations
- Install Bitcoin mining software
- Perform denial of service attacks
Bafruz communicates with other Bafruz-infected computers via a peer-to-peer (P2P) protocol in order to update and download its components onto your PC.
Alert level:
severe
Backdoor:Win32/Bafruz
Backdoor:Win32/Bafruz is a multi-component family of backdoor trojans that can perform a number of different actions on your computer, such as:
- Uninstall antivirus and security products
- Intercept social media webpages such as Facebook and Vkontakte in order to hijack conversations
- Install Bitcoin mining software
- Perform denial of service attacks
Bafruz communicates with other Bafruz-infected computers via a peer-to-peer (P2P) protocol in order to update and download its components onto your computer.
Alert level:
severe