Troj/Tepfer-E
Threat Scorecard
EnigmaSoft Threat Scorecard
EnigmaSoft Threat Scorecards are assessment reports for different malware threats which have been collected and analyzed by our research team. EnigmaSoft Threat Scorecards evaluate and rank threats using several metrics including real-world and potential risk factors, trends, frequency, prevalence, and persistence. EnigmaSoft Threat Scorecards are updated regularly based on our research data and metrics and are useful for a wide range of computer users, from end users seeking solutions to remove malware from their systems to security experts analyzing threats.
EnigmaSoft Threat Scorecards display a variety of useful information, including:
Ranking: The ranking of a particular threat in EnigmaSoft’s Threat Database.
Severity Level: The determined severity level of an object, represented numerically, based on our risk modeling process and research, as explained in our Threat Assessment Criteria.
Infected Computers: The number of confirmed and suspected cases of a particular threat detected on infected computers as reported by SpyHunter.
See also Threat Assessment Criteria.
| Threat Level: | 90 % (High) |
| Infected Computers: | 1 |
| First Seen: | November 30, 2012 |
| Last Seen: | April 6, 2020 |
| OS(es) Affected: | Windows |
Troj/Tepfer-E is a dangerous banking Trojan that has numerous aliases. Troj/Tepfer-E is very similar, if not directly related, to the Zeus or Zbot Trojan. Troj/Tepfer-E is designed to infiltrate the victim's computer and spy on the computer user's activity. This is done to rob private information like online passwords for your bank accounts and credit card numbers. ESG malware analysts have observed that the Troj/Tepfer-E Trojan spreads with the help of a dangerous worm family that uses an aggressive worm attack combined with social engineering tactics to infect as many computers as possible. When this worm infects a computer, Troj/Tepfer-E connects to a predetermined server and downloads and installs Troj/Tepfer-E onto the victim's computer.
Troj/Tepfer-E is a Trojan. These kinds of malware infections receive their name because they use a tactic similar to the one used in the story of the Trojan. Trojans like Troj/Tepfer-E cannot spread on their own. Rather, they rely on the victim's themselves to download and open them, much like the people of Troy opened the doors of their city to let the Trojan Horse (packed with enemy soldiers) into their city. Most Trojan infections use one of two ways to infect a computer: they will either use social engineering tactics (tricking computer users into thinking that the Trojan's file is a benign file and convincing them to open it) or they will rely on another malware infection with the capacity to spread and infect computers to deliver the Trojan to the victim's computer. Troj/Tepfer-E relies on worms that spread using network shares and Autorun exploits on external memory devices. These worms are particularly aggressive and will usually use executable files cleverly disguised as folder icons to trick the computer user into opening them.
Once installed, Troj/Tepfer-E will hide on the victim's computer and will cause no overt symptoms. However, Troj/Tepfer-E will spy on the victim's online activity, recording keystrokes and taking screenshots, both of which are sent to a third party. The Troj/Tepfer-E Trojan is designed to detect when the victim connects to a banking website or enters a password or credit card number while online. Troj/Tepfer-E burglarizes this data and sends it to the criminals responsible for this malware threat. Then, they can use this information to steal the victim's money or identity.
File System Details
| # | File Name |
Detections
Detections: The number of confirmed and suspected cases of a particular threat detected on
infected computers as reported by SpyHunter.
|
|---|---|---|
| 1. | C:\WINDOWS\system32\wpcap.dll | |
| 2. | C:\WINDOWS\system32\Packet.dll | |
| 3. | C:\WINDOWS\system32\drivers\npf.sys |
