Troj/Bdoor-MM is a backdoor Trojan for the Windows platform.
Troj/Bdoor-MM allows a remote user to use a gain access and control over the computer using a command prompt.
Troj/Bdoor-MM includes functionality to access the internet and communicate with a remote server via HTTP, and the Trojan can log keystrokes and record screenshots of user activity.
When first run Troj/Bdoor-MM copies itself to <Windows>\svchost.exe.
The following registry entry is created to run Troj/Bdoor-MM on startup:
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
P0w3rF1Y
<Windows>\svchost.exe