Trojan:Win64/Sirefef.D
Threat Scorecard
EnigmaSoft Threat Scorecard
EnigmaSoft Threat Scorecards are assessment reports for different malware threats which have been collected and analyzed by our research team. EnigmaSoft Threat Scorecards evaluate and rank threats using several metrics including real-world and potential risk factors, trends, frequency, prevalence, and persistence. EnigmaSoft Threat Scorecards are updated regularly based on our research data and metrics and are useful for a wide range of computer users, from end users seeking solutions to remove malware from their systems to security experts analyzing threats.
EnigmaSoft Threat Scorecards display a variety of useful information, including:
Ranking: The ranking of a particular threat in EnigmaSoft’s Threat Database.
Severity Level: The determined severity level of an object, represented numerically, based on our risk modeling process and research, as explained in our Threat Assessment Criteria.
Infected Computers: The number of confirmed and suspected cases of a particular threat detected on infected computers as reported by SpyHunter.
See also Threat Assessment Criteria.
| Threat Level: | 90 % (High) |
| Infected Computers: | 4 |
| First Seen: | November 7, 2011 |
| Last Seen: | August 7, 2022 |
| OS(es) Affected: | Windows |
The Trojan:Win64/Sirefef.D Trojan is what is known as a Trojan dropper. This means that Trojan:Win64/Sirefef.D is used as a delivery system for other malware. As part of its infection process, a Trojan dropper 'drops' or installs malware onto the victim's computer. Trojan:Win64/Sirefef.D in particular is a rootkit dropper, that is, Trojan:Win64/Sirefef.D is specifically designed to infect a computer system with a rootkit. Rootkits are notorious as being some of the most difficult to remove malware infections. In fact, some kinds of rootkits are so difficult to remove that it is often almost impossible to know for certain if the rootkit has been fully removed from the infected computer system. In the case of many rootkit infections, reformatting the infected hard drive may be the only option that is guaranteed to remove the problem. In almost all cases, rootkits require a specific anti-rootkit tool or very strong anti-malware software. This is why it is preferable to protect your computer system from malware such as Trojan:Win64/Sirefef.D, before this kind of infection leads to a much more dangerous rootkit infection. Trojan:Win64/Sirefef.D has been closely linked to the ZeroAccess rootkit, a malware threat that, while still extremely dangerous, is relatively tame when compared to other rootkits. The ZeroAccess rootkit is usually associated with browser redirects and several online scams involving fake search engines, rogue security programs, and browser hijackers such as the Google Redirect Virus.
Table of Contents
Dealing With Variants of Trojan:Win64/Sirefef.D
According to ESG PC security researchers, there are various versions of Trojan:Win64/Sirefef.D. Each variant of this malware infection is identified with a letter; for instance, Trojan:Win64/Sirefef.D is the "D" variant. As of November of 2011, variants "A" through "E" of Trojan:Win64/Sirefef.D have been identified in the wild. However, it is very likely that new variants of Trojan:Win64/Sirefef.D will continue to appear regularly. These variants are created to increase the difficulty of identifying and removing Trojan:Win64/Sirefef.D, giving Trojan:Win64/Sirefef.D leeway to deliver its payload and cause the victim's computer to become infected with a dangerous rootkit. Trojan:Win64/Sirefef.D is designed to attack 64-bit versions of the Windows operating system. There are variants of Trojan:Win64/Sirefef.D, such as the "B" variant, which are expressly designed to attack computers with a 32-bit operating system.
SpyHunter Detects & Remove Trojan:Win64/Sirefef.D
File System Details
| # | File Name | MD5 |
Detections
Detections: The number of confirmed and suspected cases of a particular threat detected on
infected computers as reported by SpyHunter.
|
|---|---|---|---|
| 1. | 80000000.@.vir | 22a3b4774f5941a67a42738bf7c3bf3e | 1 |
| 2. | 80000000.@ | 52e1c2499d79ae5b2d53a500b181f918 | 1 |
| 3. | %AllUsersProfile%\Application Data\.dll | ||
| 4. | %AllUsersProfile%\Application Data\.exe(looks like Trojan:win64/sirefef.D) | ||
| 5. | SYDLWB1083-1.zip | a852c03b21538c0615eb3a845d9404ea | 0 |
| 6. | SYDLWB1083-1.zip | 2add59a56cc036b3dee806b1878a6d0e | 0 |
Submit Comment
Please DO NOT use this comment system for support or billing questions. For SpyHunter technical support requests, please contact our technical support team directly by opening a customer support ticket via your SpyHunter. For billing issues, please refer to our "Billing Questions or Problems?" page. For general inquiries (complaints, legal, press, marketing, copyright), visit our "Inquiries and Feedback" page.