Backdoor.NanoCore

Trojan.Agent refers to a generic Trojan malware detection. It is used for detections that are either associated with no specific malware families or not enough information is available to pinpoint the malware family.

Downloaders and droppers are helper programs for various types of malware such as Trojans and rootkits. Usually they are implemented as scripts (VB, batch) or small applications.

They don’t carry any malicious activities by themselves, but just open a way for attack by downloading/decompressing and installing the core malicious modules. To avoid detection, a dropper may also create noise around the malicious module by downloading/decompressing some harmless files.

Very often, they auto-delete themselves after the goal has been achieved.

This is a detection for Trojans that use the Windows Management Instrumentation (WMI) infrastructure to alter victims’ browser shortcut files in order to add the target site so the browser(s) open with that site.

You can read more about WMI hijackers in our blog post, Explained: WMI hijackers.

Trojan.StolenData is the generic detection for files that find and delete files, folders, and registry entries with user data gathered by other Trojans.

Trojan.Miuref is a family of Trojans that have different capabilities. The most prevalent objective seems to be click fraud.

Some variants alter search results to get the victims to visit the sites they promote. They also have the ability to download and run other malware.