Home Malware Programs Backdoors BKDR_MATSNU.MCB

BKDR_MATSNU.MCB

Posted: June 12, 2013

Threat Metric

Ranking: 2,585
Threat Level: 1/10
Infected PCs: 21,725
First Seen: June 12, 2013
Last Seen: October 17, 2023
OS(es) Affected: Windows

BKDR_MATSNU.MCB is a backdoor Trojan that also boasts some unusual attack capabilities for a threat of its type: the ability to display fake warning messages while locking Windows (a la Police Ransomware Trojans, Ukash Viruses and similar Trojans), as well as a function for wiping out the Master Boot Record. The latter is of particular concern to SpywareRemove.com malware researchers since it allows BKDR_MATSNU.MCB to prevent an infected PC from booting up and launching an OS – although this damage doesn't harm any of other files that are separate from your MBR. Suitable defenses should be set up against BKDR_MATSNU.MCB's known infection vectors, which focus on e-mail spam that currently target German PC users first and foremost. Of course, deleting BKDR_MATSNU.MCB with the most convenient and powerful anti-malware software at your disposal also is a strongly advised course of action.

BKDR_MATSNU.MCB: the Real Price You Pay for Trusting Strange E-mails

Spam e-mail is, once again, the culprit for distributing malicious software, with the backdoor Trojan BKDR_MATSNU.MCB as one of its latest packages for delivery. The e-mail campaign for BKDR_MATSNU.MCB currently is focused on Germany, but the mode of attack, as well as BKDR_MATSNU.MCB's own functions, also are perfectly applicable to PCs in other countries.

This spam campaign lures victims into opening BKDR_MATSNU.MCB Trojan dropper, a ZIP file, by making the fraudulent claim that the recipient has incurred a debt that must be repaid ASAP. Details supposedly are included in the enclosed file attachment – which SpywareRemove.com malware experts have found to be one of the most common methods of malware delivery to date.

BKDR_MATSNU.MCB's functions are generalized and can compromise your computer in multiple ways that often are valued by malware authors, such as:

  • BKDR_MATSNU.MCB can be used to install malicious software of other types automatically.
  • BKDR_MATSNU.MCB has the potential to steal personal information, including sensitive data like your account passwords.
  • BKDR_MATSNU.MCB also includes built-in functions for locking Windows and displaying misleading pop-up alerts. These pop-ups typically are of the same types as seen in fake 'Police' Trojans and related ransomware-based PC threats, such as the Australian Federal Police Ukash Virus, 'An Garda Siochana Ireland's National Police Service' Ransomware or the SIAE Virus.
  • Without a doubt, the single most damaging attack in BKDR_MATSNU.MCB's arsenal is its ability to delete the MBR, an essential computer component that will cause your PC to fail to load if it becomes damaged or removed. Fortunately, BKDR_MATSNU.MCB doesn't launch this attack by default – only when ordered to do so from its Command & Control server.

Taking Out a Trojan Before It Bricks Your PC

Due to the danger that a BKDR_MATSNU.MCB infection poses to your computer, SpywareRemove.com malware experts advise no delay whatsoever in disabling and removing BKDR_MATSNU.MCB after BKDR_MATSNU.MCB is detected. Strong anti-malware software can be used to remove BKDR_MATSNU.MCB with the greatest surety of success, and, in most cases, also can provide features for detecting BKDR_MATSNU.MCB's Trojan dropper and, hopefully, blocking it before it can install BKDR_MATSNU.MCB.

However, it also should be obvious that trusting file attachments with suspicious explanations behind them always is an undesirable habit, as far as your PC's safety is concerned. Spam e-mail always should be deleted regularly, and any files that resemble the description of BKDR_MATSNU.MCB's infection vector should be scanned before you open them.

Loading...