Threat Database Stealers Infostealer.Torpplar


By GoldSparrow in Stealers

Threat Scorecard

Threat Level: 90 % (High)
Infected Computers: 1
First Seen: April 4, 2014
Last Seen: February 21, 2021
OS(es) Affected: Windows

Infostealer.Torpplar is an info-stealer Trojan that is used in attacks against Japanese PC users. Infostealer.Torpplar steals information from the corrupted PC. Upon execution, Infostealer.Torpplar creates the potentially infected files. Infostealer.Torpplar then creates a registry entry so that it can load automatically whenever the computer user boots up Windows. Infostealer.Torpplar controls online activity on the attacked PC in order to steal user input such as login credentials. Infostealer.Torpplar then transfers the stolen information to a distant location.

File System Details

Infostealer.Torpplar may create the following file(s):
# File Name Detections
1. %System%\[RANDOM FILE NAME]
2. %CurrentFolder%\$$Delme$$.bat

Registry Details

Infostealer.Torpplar may create the following registry entry or registry entries:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\"sysplar" = "%System%\[RANDOM FILE NAME]"


Infostealer.Torpplar may call the following URLs:


Most Viewed