What is XpertRAT?
|
Backdoor
|
Do XpertRAT modifies or delete files?
|
Yes
|
IS XpertRAT connects Itself To remote server?
|
Yes
|
Does XpertRAT Alters Safe Mode and System Restore Point?
|
Yes
|
Can It provide unauthorized access To Hackers?
|
No
|
Can It Result Into DdoS attack ?
|
No
|
Can XpertRAT Drop additional malicious files On PC?
|
Yes
|
Trojan Dropped are Packed.Generic.402, CeeInject.gen!DD, I-Worm.Heffer, Program:MSIL/Pameseg.B, PWSteal.Tibia.BU, SpamBrief, Trojan.Agent.aeuq, Win32.Generic.497472, Shipup.E
|
Is it possible for It to drop a keylogger into PC?
|
Yes
|
Do XpertRAT uses Self-Replicating technique?
|
No
|
Does It captures keystrokes?
|
No
|
DO Trojan Monitor Internet Sessions?
|
No
|
Does XpertRAT Lead To “BSOD Error”
|
No
|
Does XpertRAT provide superuser-level access to Hackers?
|
No
|
Is your System log files accessed by Trojan?
|
No
|
Do Trojan belong to large botnet category?
|
No
|
Can XpertRAT search for the specific cookies?
|
No
|
Can XpertRAT Install spyware and viruses ?
|
Yes
|
Spyware installed by Spyware.BrodcastDSSAGENT, Adssite, AntiSpywareDeluxe, DRPU PC Data Manager, TrustyHound, Web Surfer Watcher, SysDefender, PhP Nawai 1.1, CrisysTec Sentry, EmailObserver
|
Does XpertRAT blocks Task Manager and Registry Editor?
|
Yes
|
Do Trojan present itself as a fake screen saver?
|
No
|
Does It disable the Windows processes and services?
|
No
|
Can It disable Windows processes without users awareness?
|
No
|
Does XpertRAT degrade net speed and browsing experience?
|
No
|
Does XpertRAT perform some unusual browser activity?
|
Yes
|
Do You Notice error message on regular basis Due To XpertRAT?
|
Yes
|
Windows Error caused by XpertRAT are – 0x8024800E WU_E_DS_ROWEXISTS The row was not added because an existing row has the same primary key., 0x00000081, 0x8024401C WU_E_PT_HTTP_STATUS_REQUEST_TIMEOUT Same as HTTP status 408 – the server timed out waiting for the request., 0x1000007F, 0x0000004B, 0x80243002 WU_E_INSTALLATION_RESULTS_INVALID_DATA The results of download and installation could not be read from the registry due to an invalid data format., 0x80242007 WU_E_UH_INSTALLERHUNG An operation could not be completed because the installer exceeded the time limit., 0x80249005 WU_E_INVENTORY_WMI_ERROR A WMI error occurred when enumerating the instances for a particular class., 0x00000063, 0x80240021 WU_E_TIME_OUT Operation did not complete because it timed out., 0x80240040 WU_E_NO_SERVER_CORE_SUPPORT WUA API method does not run on Server Core installation.
|
|
Does It affect your system severely?
|
Yes
|
Does XpertRAT intercepts DNS requests?
|
No
|
Does Trojan drop a keylogger Into PC?
|
Yes
|
DO It Keeps hiding its original host location?
|
No
|
Does XpertRAT Disrupts Windows Firewall installed on the PC?
|
Yes
|
Is the bandwidth consumed by XpertRAT maximum?
|
No
|
Does It target government organizations?
|
No
|
Does It USE P2P file sharing distribution method?
|
Yes
|
Does XpertRAT use Self-Replicating technique?
|
Yes
|
XpertRAT infects msjint40.dll 4.0.8905.0, rdpcore.dll 6.1.7600.16385, iscsilog.dll 6.0.6001.18000, sendcmsg.dll 5.1.2600.5512, Microsoft.Build.Tasks.ni.dll 2.0.50727.312, UIRibbon.dll 6.1.7601.17514, TPPrnjpn.dll 0.3.84.5, ieproxy.dll 8.0.6001.18882, wmitimep.dll 5.1.2600.2180, msdtcuiu.dll 2001.12.6931.18000, igmpagnt.dll 5.1.2600.5512, wmpcd.dll 10.0.0.3802, smcomu1.dll 1.1.2.0, radarrs.dll 6.1.7600.16385
|
Does XpertRAT open backdoor in infected system?
|
No
|
Does It Disables security software on infected system?
|
No
|
Can XpertRAT Record Keystrokes?
|
Yes
|
How Trojan Monitor Internet Activity On Compromised PC
|
P2p File Sharing
|
Is It possible for Trojan To Encrypt files ?
|
Yes
|
Is it possible for XpertRAT to Change browser settings?
|
Yes
|
Can XpertRAT Steal User Account Information?
|
Yes
|
Does It changes Default System configurations ?
|
No
|
Are you seeing fake scan dialog boxes on your screen because of Trojan?
|
Yes
|
Does It modify or corrupts users System files?
|
Yes
|
Can XpertRAT Be Rated on Threat Level?
|
Moderate Risk
|