Threat Database Trojans Trojan:Win32/Varpes


By GoldSparrow in Trojans

Threat Scorecard

Threat Level: 90 % (High)
Infected Computers: 6
First Seen: December 8, 2015
Last Seen: February 5, 2020
OS(es) Affected: Windows

Trojan:Win32/Varpes is malware that runs on both 32 and 64-bit Windows systems and may use runtime DLLs to facilitate its operations. Varpes is a family of Trojans that may be leveraged to achieve a number of goals on infected PCs. Most Varpes Trojans are specialized in augmenting the process of Web browsers like Google Chrome, Internet Explorer and Mozilla Firefox. There are some variants of Trojan:Win32/Varpes that may be used to record the keystrokes of infected users and store the collected input in clear text format on simple TXT files. Other Trojan:Win32/Varpes variants may take screenshots of the desktop of infected systems. The Trojan:Win32/Varpes malware is used by cyber hackers to gather inlet on infected users predominantly. The Trojans from the Trojan:Win32/Varpes family may host their main executable in the Temp folder under the Windows directory to escape security scans and appear as of Microsoft Windows.

Many versions of Trojan:Win32/Varpes are equipped with illicit digital certificates to bypass scanners and perform changes to the Windows Registry of infected computers. The Trojan:Win32/Varpes malware may inject code into explorer.exe and run as a background service to hide its activities. As stated above, the Trojans from the Trojan:Win32/Varpes family may gather data like user credentials, software configuration and take screenshots that may be used for online identity theft and launch personalized Web attacks on computer networks. All Trojan:Win32/Varpes variants use port 8080 to communicate via HTTP with their 'Command and Control' servers and may be hard to detect because most legitimate programs use the same port as well. You need to install a renowned anti-malware suite to detect Trojan:Win32/Varpes and eliminate its binary.

Related Posts


Most Viewed