Threat Database Keyloggers VirTool:Win32/Keylogger.A


By SpideyMan in Keyloggers

Threat Scorecard

Threat Level: 80 % (High)
Infected Computers: 75
First Seen: August 29, 2011
Last Seen: April 14, 2022
OS(es) Affected: Windows

VirTool:Win32/Keylogger.A is a dangerous keylogger application that is able to capture all user keystrokes that involve personal information, such user name, password, credit card number, etc. VirTool:Win32/Keylogger.A enables remote attackers gain access to the targeted computer system that may cause illegitimate actions by installing hidden FTP sever. VirTool:Win32/Keylogger.A is able to download other parasites onto the infected machine and can change settings on your firewall and other security programs. VirTool:Win32/Keylogger.A should be deleted as quickly as possible to avoid system damage.

File System Details

VirTool:Win32/Keylogger.A may create the following file(s):
# File Name Detections
1. %AppData%\rundll.exe
2. %AppData%\Microsoft\installer.exe
3. %AppData%\pagefile.sys
4. %AppData%\jungheinrich.exe

Registry Details

VirTool:Win32/Keylogger.A may create the following registry entry or registry entries:
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run rundll.exe = ""%AppData%\rundll.exe ""


Most Viewed