Threat Database Malware VirTool:WinNT/Exforel.A


By LoneStar in Malware

Threat Scorecard

Ranking: 2,511
Threat Level: 10 % (Normal)
Infected Computers: 2,346
First Seen: December 7, 2012
Last Seen: November 17, 2023
OS(es) Affected: Windows

VirTool:WinNT/Exforel.A is a malware infection that permits cybercriminals to obtain remote backdoor access and control of the corrupted machine. While being installed and launched on the affected computer, VirTool:WinNT/Exforel.A makes system changes by downloading malevolent files. VirTool:WinNT/Exforel.A is installed as a driver by other components of the Exforel family. Cybercriminals use VirTool:WinNT/Exforel.A to conduct numerous various activities on the victimized PC. VirTool:WinNT/Exforel.A uploads, downloads and runs files. VirTool:WinNT/Exforel.A also routs TCP/IP traffic. VirTool:WinNT/Exforel.A uses low-level network function hooks, at the NDIS (Network Driver Interface Specification) level, and may not be recognized by common user-mode utilities.


VirTool:WinNT/Exforel.A may call the following URLs:


Most Viewed