Troj/Bdoor-JU is a backdoor Trojan for the Windows platform.
When first run Troj/Bdoor-JU copies itself to <System>\msiecfg.exe.
The following registry entry is created to run msiecfg.exe on startup:
HKCU\Software\Microsoft\Windows\CurrentVersion\Run
IEXPLORER
<System>\msiecfg.exe
The following registry entry is set:
HKCU\Software\EZ
0
<System>\msiecfg.exe
Once installed Troj/Bdoor-JU installs a listening port to await commands from a remote intruder.
Troj/Bdoor-JU includes functionality to access the internet and communicate with a remote server via HTTP