Infostealer.Fightpos
The Infostealer.Fightpos malware, as the name suggests, is used by cyber criminals to collect and transmit data from infected PCs to their servers. The Fightpos malware falls in the category of backdoor trojans and is deployed in spam emails as an attached file and may accompany freeware bundles from software centers with a bad reputation. Malware researchers note that the Fightpos trojan can place its files in the Microsoft folder under Application Data to evade detection. Moreover, the Infostealer.Fightpos malware drops two files named 'ActiveComponent.bat' and 'ActiveComponent.exe' in the Temp folder in order to manipulate the Microsft Internet Explorer. The Fightpos trojan then creates a registry entry to make sure users run the corrupted Internet Explorer.exe and collect data like typed URLs, entered log-in credentials and offline web app data. As stated above, the Fightpos malware is a backdoor trojan, and it adds several registry keys concerning group policies and firewall settings in order to allow cyber criminals to connect to the infected machine. Additionally, the Fightpos malware can download and execute files as well as launch DDoS attacks. Security experts advise users to install a reputable anti-malware shield and avoid interaction with spam emails and suspicious websites.
Table of Contents
File System Details
# | File Name |
Detections
Detections: The number of confirmed and suspected cases of a particular threat detected on
infected computers as reported by SpyHunter.
|
---|---|---|
1. | %UserProfile%\Start Menu\Programs\Startup\Shortcut to Internet Explorer.lnk | |
2. | %Temp%\ActiveComponent.bat | |
3. | %Temp%\ActiveComponent.exe |
Registry Details
URLs
Infostealer.Fightpos may call the following URLs:
[http://]69.195.77.74/BrFighter/bot/comma[REMOVED] |
Submit Comment
Please DO NOT use this comment system for support or billing questions. For SpyHunter technical support requests, please contact our technical support team directly by opening a customer support ticket via your SpyHunter. For billing issues, please refer to our "Billing Questions or Problems?" page. For general inquiries (complaints, legal, press, marketing, copyright), visit our "Inquiries and Feedback" page.