Backdoor.Andromeda

Short bio

Backdoor.Andromeda is the generic detection for Trojans of the Andromeda family.

Type and source of infection

There are many variants of Backdoor.Andromeda that all allow remote, unauthorized access to a system. Threat actors have a variety of modules at their disposal that can install other malware or steal information from the affected system. This backdoor is usually spread by malicious email attachments or by exploit kits.

Protection

Malwarebytes protects users from Backdoor.Andromeda by using real-time protection.

block Backdoor.Andromeda

Malwarebytes blocks Backdoor.Andromeda

Remediation

Malwarebytes can remove Backdoor.Andromeda without further user interaction.

  1. Please download Malwarebytes to your desktop.
  2. Double-click mb3-setup-consumer-{version}.exe and follow the prompts to install the program.
  3. Then click Finish.
  4. Once the program has fully updated, select Scan Now on the Dashboard. Or select the Threat Scan from the Scan menu.
  5. If another update of the definitions is available, it will be implemented before the rest of the scanning procedure.
  6. When the scan is complete, make sure that all Threats are selected, and click Remove Selected.
  7. Restart your computer when prompted to do so.

In case of active infection, it is imperative to find out if (and what) information has been stolen so you can take countermeasures, such as changing passwords.

Related blog content

Information stolen? What now?

Nuclear EK Leveraged In Large WordPress Compromise Campaign

Select your language