EnigmaSoft Threat Scorecard
EnigmaSoft Threat Scorecards are assessment reports for different malware threats which have been collected and analyzed by our research team. EnigmaSoft Threat Scorecards evaluate and rank threats using several metrics including real-world and potential risk factors, trends, frequency, prevalence, and persistence. EnigmaSoft Threat Scorecards are updated regularly based on our research data and metrics and are useful for a wide range of computer users, from end users seeking solutions to remove malware from their systems to security experts analyzing threats.
EnigmaSoft Threat Scorecards display a variety of useful information, including:
Ranking: The ranking of a particular threat in EnigmaSoft’s Threat Database.
Severity Level: The determined severity level of an object, represented numerically, based on our risk modeling process and research, as explained in our Threat Assessment Criteria.
Infected Computers: The number of confirmed and suspected cases of a particular threat detected on infected computers as reported by SpyHunter.
See also Threat Assessment Criteria.
|Threat Level:||90 % (High)|
|First Seen:||October 26, 2015|
|Last Seen:||February 11, 2023|
The Dowfeld trojan falls in the category of trojan downloaders and is similar to Nemucod and Lacam The TrojanDownloader:Win32/Dowfeld malware may be used by hackers to install other malicious software on compromised systems and TrojanDownloader:Win32/Dowfeld may arrive on your PC as an attached file to spam emails. The TrojanDownloader:Win32/Dowfeld may insert a Mutex in the Windows Registry of infected systems to prevent other instances of itself from running on the same PC. The TrojanDownloader:Win32/Dowfeld malware is designed to connect to dummy domains like Finemagicball.org that are registered by its operators and may download and install other cyber threats. The TrojanDownloader:Win32/Dowfeld malware uses port 80 for its communications in HTTP format and might limit the Internet bandwidth of infected users. Additionally, the TrojanDownloader:Win32/Dowfeld malware can execute simple commands like finding your PC's location, collecting information regarding your software and hardware configuration and validating digital signatures. The TrojanDownloader:Win32/Dowfeld malware may place a corrupted LNK file in your system's startup folder to avoid security scans and run every time you turn on your computer. The Dowfeld trojan may be used to install keyloggers like Zeus Keylogger and Golden Keylogger to collect your online banking credentials and logins for social media. That type of information fetches a good price on underground cybercrime forums, and the Dowfeld trojan should not be underestimated. Computer users that suspect infiltration of the Dowfeld trojan should check if their Windows Firewall is turned on from the 'Control Panel' and install a trusted anti-malware solution to eradicate the TrojanDownloader:Win32/Dowfeld malware.