Nivdort

description-logo Description

Nivdort is primarily a password stealing Trojan which exhibits certain bot behaviors, such as receiving commands from a remote control server.

Symptoms

Nivdort may create directories and files with completely random names. Nivdort also has the ability to insert itself through code injection into running programs and processes, making it harder to detect.

Analysis

Nivdort is designed to collect information on you and send that information back to a remote host or hosts.

It can monitor all the keystrokes you make, the websites you visit, collect credit card and banking information as well as steal username and password details.

recommended-action-logoInstructions

It is not recommended that any attempts to remove this malware be performed manually. Fortinet recommends that you remove this threat by running a complete scan of your system using FortiClient Endpoint Protection.

Telemetry logoTelemetry