Alert level: High
WinNT/Ldpinch is a rootkit driver that is dropped by some variants of Win32/Ldpinch.
Win32/Ldpinch is a family of password-stealing trojans. This trojan gathers private user data such as passwords from the host computer and sends the data to the attacker at a preset e-mail address. The Win32/Ldpinch trojans use their own Simple Mail Transfer Protocol (SMTP) engine or a web-based proxy for sending the e-mail, thus copies of the sent e-mail will not appear in the affected user's e-mail client.
Article ID: 4028494 - Last Review: 2017, ഓഗ 11 - Revision: 1