Home / malware Trojan:Win64/Sirefef
First posted on 10 August 2012.
Source: MicrosoftAliases :
There are no other names known for Trojan:Win64/Sirefef.
Explanation :
Trojan:Win64/Sirefef is related to the multi-component malware family Win32/Sirefef.
Win64/Sirefef is a multi-component family of malware that uses stealth to hide its presence on an affected computer. Due to the nature of this threat, the payload may vary greatly from one infection to another, although common behavior includes:
- Downloading and executing of arbitrary files
- Contacting remote hosts
- Disabling of security features
Often, components that are stored in a hidden folder are detected as Trojan:Win64/Sirefef. They may use a file name in the following format:
<hexnum>.$
where <hexnum> is an eight digit hex number, for example, 00000001.@ and 000000cb.@.
The presence of Trojan:Win64/Sirefef indicates that your computer may have been infected by Win64/Sirefef. For more information on this threat family, see the description for Win32/Sirefef elsewhere in the encyclopedia.
Analysis by Chun Feng
Last update 10 August 2012
