Wakeminap is a malicious Trojan horse that is made to open a hidden backdoor to the infected computer. It is known to hide over Adobe updater software name. Additionally, it drops a clean file with an extension of .doc, .pdf or .ppt in the %Temp% or %CurrentFolder% directories and then opens it. Wakeminap modifies systems registry, so that it could run every time windows starts.
After dropping and enabling itself, Wakeminap opens a backdoor connection for several locations, and then runs in the background by awaiting commands of the remote cybercriminal. This is the list of domains it tries to connect:
When the remote hacker logs in through the backdoor, he is able to perform several very dangerous actions, like ending processes or executing malicious files. Additionally, it may have the ability to execute shell commands. Here’s a list of actions that could be used by hacker, when the victim's computer is compromised:
Information added: 06/05/12 04:29;
information updated: 06/05/12 04:31