- Threat Encyclopedia
- Malicious URL
- http://root.{BLOCKED}a.ru:3162
BKDR_SHOTODOR.A connects to this URL to send and receive commands from a remote malicious user. This malware makes use of “garbage” strings, which in actual hides the malicious code. The said malicious code is an obfuscated AutoIt script.