COMpfun is a RAT (Remote Access Trojan) that belongs to the Turla hacking group and was first detected around 2014. The Turla APT (Advanced Persistent Threat) is believed to be a group of Russian individuals that are likely to be sponsored by the Kremlin (but this information is yet to be confirmed). The Turla hacking group tends to target high-profile individuals/organizations located in Russia and Belarus. The Turla APT has an impressive arsenal of hacking tools, and if you compare the COMpfun RAT to another one of their threats, the Reductor Trojan, you will see that the latter is far more threatening and complex. However, the COMpfun RAT is not to be estimated either as it can still enable the attackers to hijack a system and gain complete control over it.
Some of the features of the COMpfun RAT include:
- Capturing screenshots of the desktop and tabs of the compromised system.
- Uploading files.
- Downloading files.
- Executing files.
- Managing files.
- Running a keylogger that is programmed to send the collected data to the attackers over certain periods of time.
- Executing PowerShell scripts.
- Executing remote commands.
As we mentioned, the COMpfun RAT was first spotted in 2014, and at that time, this threat was rather innovative as it employed COM-hijacking (Component Object Module). This capability allowed the COMpfun RAT to remain under the radar of anti-malware tools as it injects itself into legitimate processes running on the system.
Despite the COMpfun RAT being somewhat outdated in the current year, it is safe to assume that it is still circulating the Web and claiming victims. However, anti-virus applications have developed greatly since 2014, and any reputable security solution will be able to detect and wipe off the COMpfun RAT from your system.
Do You Suspect Your PC May Be Infected with COMpfun & Other Threats? Scan Your PC with SpyHunterSpyHunter is a powerful malware remediation and protection tool designed to help provide PC users with in-depth system security analysis, detection and removal of a wide range of threats like COMpfun as well as a one-on-one tech support service. Download SpyHunter's FREE Malware Remover
Security Doesn't Let You Download SpyHunter or Access the Internet?Solutions: Your computer may have malware hiding in memory that prevents any program, including SpyHunter, from executing on your computer. Follow to download SpyHunter and gain access to the Internet:
- Use an alternative browser. Malware may disable your browser. If you're using IE, for example, and having problems downloading SpyHunter, you should open Firefox, Chrome or Safari browser instead.
- Use a removable media. Download SpyHunter on another clean computer, burn it to a USB flash drive, DVD/CD, or any preferred removable media, then install it on your infected computer and run SpyHunter's malware scanner.
- Start Windows in Safe Mode. If you can not access your Window's desktop, reboot your computer in "Safe Mode with Networking" and install SpyHunter in Safe Mode.
- IE Users: Disable proxy server for Internet Explorer to browse the web with Internet Explorer or update your anti-spyware program. Malware modifies your Windows settings to use a proxy server to prevent you from browsing the web with IE.