By GoldSparrow in Trojans

Threat Scorecard

Threat Level: 80 % (High)
Infected Computers: 81
First Seen: June 25, 2015
Last Seen: May 2, 2022
OS(es) Affected: Windows

Malware researchers classify the Fobber cyber threat as a trojan that is used by cybercriminals to obtain log-in details for social media and online banking portals. You may be interested to know that the Fobber trojan is an updated and modified version of the Tinba malware that fills the same niche of harmful programs. The Fobber trojan is distributed via exploit kits such as the HanJuan Exploit Kit and could be introduced to your computer by a trojan downloader like Ajuxery and Drepitt. The Fobber trojan is written with the purpose of monitoring your web traffic and recording your user credentials when you type them onto the log-in page. The Fobber trojan executes man-in-the-middle (MITM for short) attacks that can allow cybercriminals to hijack your social media account and purchase goods on online stores by using your credit card number. Also, the Fobber trojan may start a background service in the Windows Task Manager to hide its operations. Malware researchers note that the Fobber trojan could be found in the Application Data folder, and users should not try to remove it manually because it may contain links to an auto-restore module in the Temp folder. Users who detect the Fobber trojan on their computer should seek the help of a trusted anti-malware solution that can delete the Fobber binary. Additionally, you should change your passwords for all of your accounts to avoid security issues.

SpyHunter Detects & Remove Fobber

Registry Details

Fobber may create the following registry entry or registry entries:


Fobber may create the following directory or directories:



Most Viewed