Warning message... Link to action
Read our in-depth analysis of a new high-volume campaign that marked the resurgence of notorious malware-as-a-service Hawkeye Keylogger. Read the blog post
Aliases: Win32/Sirefef.DK (ESET) Trojan.Win32.Jorik.ZAccess.qe (Kaspersky) FakeAlert-GA.gen.r (McAfee) Trojan.Gen.2 (Symantec) Cryp_FakeAV-56 (Trend Micro)
Microsoft security software detects and removes this threat.
This family of malware uses stealth to hide itself. Trojans in this family can do different things, including:
- Downloading and running other files
- Contacting remote hosts
- Disabling security features
Members of the family can also change search results, which can generate money for the attackers who use Sirefef.
Variants of Win32/Sirefef may be installed by other malware, including variants of the Trojan:Win32/Necurs family.
See the Win32/Sirefef family description for more information.