Home / malware Infostealer.Canfili
First posted on 25 August 2015.
Source: SymantecAliases :
There are no other names known for Infostealer.Canfili.
Explanation :
When the Trojan is executed, it may connect to the following location to determine the IP address of the compromised computer:
bot.whatismyipaddress.com
The Trojan may steal the following information from the compromised computer:
Computer nameIP addressPasswords from browsers, FTP clients, and PidGin
The Trojan sends the following information back to a remote server selected by the attacker.
Note: The attacker can control the location of the remote server.Last update 25 August 2015
