Threat Description

Backdoor:​W32/Breplibot

Details

Aliases:Backdoor:​W32/Breplibot, Backdoor:​W32/Breplibot, W32/Breplibot Backdoor.Win32.Breplibot
Category:Malware
Type:Backdoor
Platform:W32

Summary



A remote administration utility which bypasses normal security mechanisms to secretly control a program, computer or network.



Removal


Automatic action

Once detected, the F-Secure security product will automatically disinfect the suspect file by either deleting it or renaming it.

More

You may wish to refer to the Support Community for further assistance. You also may also refer to General Removal Instructions for a general guide on alternative disinfection actions.



Technical Details



Breplibot is an IRC bot-based backdoor. After being started, it installs itself to the system, creates a startup key for itself in the Registry, connects to several IRC servers, and waits for commands from a remote hacker. The backdoor can delete, download, and run files on an infected computer. It also terminates the processes of several security-related software packages.






SUBMIT A SAMPLE

Suspect a file or URL was wrongly detected? Submit a sample to our Labs for analysis

Submit Now

Scan & clean your PC

F-Secure Online Scanner will scan and clean your PC in just a few minutes for free

Learn More