Troj/Bdoor-AW is a backdoor Trojan for the Windows platform.
When first run, Troj/Bdoor-AW copies itself to the Windows system folder as bsc32.exe and creates the following registry entries in order to run each time a user logs on:
HKLM\Software\Microsoft\Windows\CurrentVersion\Run
Microsoft Services
"<Windows system folder>\bsc32.exe"
HKLM\Software\Microsoft\Windows\CurrentVersion\RunServices
Microsoft Services
"<Windows system folder>\bsc32.exe"
Troj/Bdoor-AW chooses a random port and then sends registration information to a remote site via an HTTP GET request. The information transferred includes the randomly chosen port number and the system IP.