Backdoor.Andromeda

Short bio

Backdoor.Andromeda is the generic detection for Trojans of the Andromeda family.

Type and source of infection

There are many variants of Backdoor.Andromeda that all allow remote, unauthorized access to a system. Threat actors have a variety of modules at their disposal that can install other malware or steal information from the affected system. This backdoor is usually spread by malicious email attachments or by exploit kits.

Protection

Malwarebytes protects users from Backdoor.Andromeda by using real-time protection.

block Backdoor.Andromeda

Malwarebytes blocks Backdoor.Andromeda

Remediation

Malwarebytes can remove Backdoor.Andromeda without further user interaction.

  1. Please download Malwarebytes to your desktop.
  2. Double-click MBSetup.exe and follow the prompts to install the program.
  3. When your Malwarebytes for Windows installation completes, the program opens to the Welcome to Malwarebytes screen.
  4. Click on the Get started button.
  5. Click Scan to start a Threat Scan.
  6. Click Quarantine to remove the found threats.
  7. Reboot the system if prompted to complete the removal process.

In case of active infection, it is imperative to find out if (and what) information has been stolen so you can take countermeasures, such as changing passwords.

Related blog content

Information stolen? What now?

Nuclear EK Leveraged In Large WordPress Compromise Campaign

Select your language