Related blog content
How artificial intelligence and machine learning will impact cybersecurity
Glupteba.Backdoor.Bruteforce.DDS
Short bio
Glupteba.Backdoor.Bruteforce.DDS is Malwarebytes’ detection name for Trojans of the Glupteba family that creates a backdoor on affected systems detected by Malwarebytes’ Katana engine.
The detection names are produced by Malwarebytes 4 and Malwarebytes business products. These generic malware detections are due to our new automated signature system called BytesTotal and specifically the DDS engine that are based on Machine Learning technology with 100% autonomous learning which don’t require any human interaction to correctly identify malware. These techniques are part of Malwarebytes’ Katana engine and were developed for automated mass detection of wide ranges of malware and adware.
Type and source of infection
Glupteba.Backdoor.Bruteforce.DDS is dropped by bruteforcing open ports like RDP. It then acts as a backdoor allowing attackers to deploy further tools and malware.
Protection
The Malwarebytes’ Katana engine detects unknown threats as Qbot.Backdoor.Stealer.DDS by using generic detections, Machine Learning, and other Artificial Intelligence techniques to protect users from malware that has not yet been classified.
Malwarebytes blocks
Glupteba.Backdoor.Bruteforce.DDS
Home remediation
Malwarebytes can detect and remove Glupteba.Backdoor.Bruteforce.DDS without further user interaction.
- Please download Malwarebytes to your desktop.
- Double-click MBSetup.exe and follow the prompts to install the program.
- When your Malwarebytes for Windows installation completes, the program opens to the Welcome to Malwarebytes screen.
- Click on the Get startedbutton.
- Click Scan to start a Threat Scan.
- Click Quarantine to remove the found threats.
- Reboot the system if prompted to complete the removal process.
Business remediation
How to remove Glupteba.Backdoor.Bruteforce.DDS with the Malwarebytes Nebula console
You can use the Malwarebytes Anti-Malware Nebula console to scan endpoints.
Nebula endpoint tasks menu
Choose the Scan + Quarantine option. Afterwards you can check the Detections page to see which threats were found.
On the Quarantine page you can see which threats were quarantined and restore them if necessary.
