The TEMPFUN threat is a backdoor Trojan that appears to be the creation of a highly-skilled APT (Advanced Persistent Threat). Considering the high-level of the APT that deploys the TEMPFUN threat, it is likely that this malware will not affect regular users. The authors of the TEMPFUN backdoor Trojan are likely to use this threat against high-profile targets such as large companies or government bodies.
Once the TEMPFUN threat compromises the targeted system, it will connect to the attackers’ C&C (Command & Control) server and begin transferring data from the victim’s computer. The gathered data is in regard to the user’s software, hardware and system settings. For extra safety, the TEMPFUN malware encrypts all the collected information before sending it to the C&C server of its operators. As soon as the information in question is siphoned to the attackers’ C&C server, the threat will await further instructions from its operators. It is likely that the TEMPFUN backdoor Trojan will then receive a command from the C&C server.
Thanks to the TEMPFUN Trojan, the attackers may be capable of executing various remote commands on the infected machine. This would allow the attackers to control the processes running on the system, as well as the services, which are present on the computer. Furthermore, the TEMPFUN backdoor Trojan would allow its operators to plant additional corrupted payloads on the compromised PC. The TEMPFUN malware is not capable of detecting whether it is being run on a regular computer or a sandbox environment. This inherent flaw in the TEMPFUN Trojan allowed cybersecurity analysts to dissect and study this threat rather easily.
The TEMPFUN backdoor Trojan may be inspired by the HIPSTING threat. The aforementioned strain of malware is known to be utilized by APTs. However, after analysis, malware researchers concluded that the two threats likely have different authors who may have been using the same sources to create the two threats, hence the similarities between the two backdoor Trojans.
If you want to protect your computer from threats like the TEMPFUN backdoor Trojan, make sure to install a genuine anti-malware application.