Home Malware Programs Trojans Fobber


Posted: June 25, 2015

Threat Metric

Threat Level: 8/10
Infected PCs: 190
First Seen: June 25, 2015
Last Seen: May 2, 2022
OS(es) Affected: Windows

Fobber is a vicious information-stealing Trojan that focuses on your on-line activity. The malware is distributed via complex exploit kit called HanJuan. All it takes for the infection to happen is the user to click on a malicious advertisement. Once the kit enters, it links the computer with a Command and Control (C&C) server, controlled by the cyber criminals. The culprits can then download Fobber without displaying any visible signs. As a result, the users often have no clue whatsoever that their machines are monitored by spyware. Instead of trying to copy files from your hard drive, Fobber grabs the passwords to your valuable accounts. The primary target is the banking accounts as these credentials can be used to steal your money. Fobber injects harmful codes in your Internet clients and intercepts any information that you type on the financial platforms. This data is later encrypted and sent to the C&C servers. You should regularly scan your system with an advanced malware removal tool to detect and delete this dangerous Trojan in a timely manner.

Technical Details

Registry Modifications

The following newly produced Registry Values are:


Additional Information

The following directories were created: