Severe threats typically are remotely exploitable vulnerabilities, which can lead to system compromise. Successful exploitation does not normally require any interaction and exploits are in the wild. There exists a high possibility of potential system damage or security flaw. Attacker has complete control over your computer or install new software on your machine.
||Backdoor.Trojan.Fxsvc is a Backdoor Trojan that gives its author access to your computer.
When Backdoor.Trojan.Fxsvc is executed, it opens a port that gives the Trojans creator unauthorized access to the infected computer. The Trojan drops server.ini that provides configuration settings, including opening port 34, by default.
One of the payloads allows the Trojans author to remotely shut down the compromised computer.
Backdoor.Trojan.Fxsvc is written in Borland Delphi and is packed with UPX.
||process: fxsvc.exe: MD5 Hash: 19213a63a007ddf06fc...
process: fxsvc.exe: MD5 Hash: 5ab5cbf45cfdf931998...
process: fxsvc.exe: MD5 Hash: de026e97bdbddb3c95f...
process: fxsvc.exe: MD5 Hash: ec7cbbedf44becde1bd..
||Backdoor - A Trojan software is any software on a user's computer that the user is not aware or intentionally installed. Most Trojan software is designed to perform some sort of actions that could jeopardize the user's security or privacy.