In this post, I am going to describe the way the SoreFang trojan infused into your system, and the best way to delete SoreFang trojan virus.
What is SoreFang trojan?
| Name | SoreFang |
| Infection Type | Trojan |
| Symptoms |
|
| Similar behavior | Kechang, TreasureHunter, Rctopus, FakeTool, Doplik, Primarypass |
| Fix Tool |
See If Your System Has Been Affected by SoreFang trojan |
The name of this kind of malware is a reference to a popular tale about Trojan Horse, which was put to work by Greeks to get in the city of Troy and win the war. Like a dummy horse that was made for trojans as a gift, SoreFang trojan virus is distributed like something legit, or, at least, effective. Harmful apps are concealing inside of the SoreFang trojan virus, like Greeks within a big wooden dummy of a horse.1Trojan viruses are among the leading malware kinds by its injection rate for quite a long time. And now, during the pandemic, when malware got enormously active, trojan viruses boosted their activity, too. You can see a lot of messages on different sources, where people are whining concerning the SoreFang trojan virus in their computer systems, and also requesting for help with SoreFang trojan virus removal.
Trojan SoreFang is a kind of virus that infiltrates right into your PC, and afterwards performs different destructive features. These features depend on a kind of SoreFang trojan: it can work as a downloader for other malware or as a launcher for another destructive program which is downloaded in addition to the SoreFang trojan virus. During the last two years, trojans are also spread with email add-ons, and most of cases utilized for phishing or ransomware injection.
SoreFang2 also known as
| Bkav | W32.AIDetectMalware |
| Lionic | Trojan.Win32.Agentb.X!c |
| Elastic | malicious (high confidence) |
| Cynet | Malicious (score: 99) |
| CAT-QuickHeal | Trojan.SoreFang.A5 |
| Skyhigh | BehavesLike.Win32.NetLoader.gh |
| McAfee | PWS-FCPM!A32E1202257A |
| Malwarebytes | Trojan.Sangfor |
| Zillya | Trojan.Agent.Win32.1311202 |
| Sangfor | Trojan.Win32.Wellmess.IOC |
| K7AntiVirus | Riskware ( 0040eff71 ) |
| Alibaba | TrojanSpy:Win32/SoreFang.beeb879d |
| K7GW | Riskware ( 0040eff71 ) |
| CrowdStrike | win/malicious_confidence_100% (W) |
| BitDefenderTheta | AI:Packer.8AEE68F41F |
| VirIT | Trojan.Win32.SpyAgent.CUMM |
| Symantec | Downloader.Sorefang |
| ESET-NOD32 | Win32/Spy.Agent.PXZ |
| APEX | Malicious |
| Kaspersky | Trojan.Win32.Agentb.jxgl |
| BitDefender | Gen:Variant.Zusy.376156 |
| NANO-Antivirus | Trojan.Win32.PWS.hulzle |
| MicroWorld-eScan | Gen:Variant.Zusy.376156 |
| Avast | Win32:Malware-gen |
| Tencent | Malware.Win32.Gencirc.115dfd20 |
| Sophos | Troj/SoreFang-A |
| F-Secure | Heuristic.HEUR/AGEN.1351616 |
| DrWeb | BackDoor.Siggen2.3412 |
| VIPRE | Gen:Variant.Zusy.376156 |
| TrendMicro | TrojanSpy.Win32.DARKHOTEL.YAAG-A |
| Emsisoft | Gen:Variant.Zusy.376156 (B) |
| GData | Gen:Variant.Zusy.376156 |
| Jiangmin | Trojan.Agentb.gnc |
| Webroot | W32.Malware.Gen |
| Varist | W32/Wellmess.XXSF-8736 |
| Avira | HEUR/AGEN.1351616 |
| Antiy-AVL | Trojan[APT]/Win32.WellMess |
| Kingsoft | malware.kb.a.937 |
| Xcitium | Malware@#sku81bcq6omq |
| Arcabit | Trojan.Zusy.D5BD5C |
| ViRobot | Trojan.Win32.S.Agent.434688.BN |
| ZoneAlarm | Trojan.Win32.Agentb.jxgl |
| Microsoft | Trojan:Win32/SoreFang |
| Detected | |
| AhnLab-V3 | Trojan/Win.Darkhotel.R536056 |
| VBA32 | Trojan.Agentb |
| Cylance | unsafe |
| Panda | Trj/GdSda.A |
| TrendMicro-HouseCall | TrojanSpy.Win32.DARKHOTEL.YAAG-A |
| Rising | Trojan.FakeSanforUD!1.C480 (CLASSIC) |
| Ikarus | Trojan-Spy.Agent |
| MaxSecure | Trojan.Malware.83557616.susgen |
| Fortinet | W32/PossibleThreat |
| AVG | Win32:Malware-gen |
| DeepInstinct | MALICIOUS |
What are the symptoms of SoreFang trojan?
- Uses Windows utilities for basic functionality;
- Authenticode signature is invalid;
- Detects Bochs through the presence of a registry key;
- Checks the version of Bios, possibly for anti-virtualization;
- Checks the CPU name from registry, possibly for anti-virtualization;
- Creates a copy of itself;
- Collects information to fingerprint the system;
The typical sign of the SoreFang trojan virus is a gradual appearance of various malware – adware, browser hijackers, et cetera. Due to the activity of these harmful programs, your system becomes really lagging: malware uses up large quantities of RAM and CPU capacities.
Another detectable impact of the SoreFang trojan virus presence is unknown programs showed in task manager. In some cases, these processes might try to imitate system processes, but you can understand that they are not legit by looking at the source of these tasks. Quasi system applications and SoreFang trojan’s processes are always listed as a user’s processes, not as a system’s.
How to remove SoreFang trojan virus?
- Download and install Loaris Trojan Remover.
- Open Loaris and perform a “Standard scan“.
- “Move to quarantine” all items.
- Open “Tools” tab – Press “Reset Browser Settings“.
- Approve the reset pressing “Yes” button in the appeared window.
- Restart your computer.
To eliminate SoreFang trojan and also ensure that all added malware, downloaded with the help of this trojan, will certainly be removed, as well, I’d suggest you to use Loaris Trojan Remover.
SoreFang trojan virus is pretty tough to eliminate manually. Its paths are very difficult to track, and the modifications executed by the SoreFang trojan are concealed deeply inside of the system. So, the opportunity that you will make your system 100% clean of trojans is very low. And don't forget about malware that has been downloaded and install with the help of the SoreFang trojan virus. I think these arguments suffice to assure that removing the trojan virus manually is an awful suggestion.
SoreFang removal guide
To spot and eliminate all viruses on your personal computer using Loaris Trojan Remover, it’s better to use Standard or Full scan. Removable scan, as well as Custom, will scan only specified directories, so these scans cannot provide the full information.
You can see the detects during the scan process lasts. Nevertheless, to perform any actions against spotted malware, you need to wait until the scan is over, or to stop the scanning process.
To designate the appropriate action for each detected malicious items, click the arrow in front of the detection name of detected malicious programs. By default, all malicious items will be sent to quarantine.
How to remove SoreFang Trojan?
Name: SoreFang
Description: Trojan SoreFang is a kind of virus that infiltrates into your computer, and after that performs different destructive functions. These features depend upon a type of SoreFang trojan: it can act as a downloader for many other malware or as a launcher for another destructive program which is downloaded in addition to the SoreFang trojan. During the last two years, trojans are also dispersed via e-mail attachments, and most of situations utilized for phishing or ransomware infiltration.
Operating System: Windows
Application Category: Trojan
User Review
( votes)- What is Trojan Horse: https://en.wikipedia.org/wiki/Trojan_horse_(computing)
- SoreFang VirusTotal Report: https://www.virustotal.com/api/v3/files/a4b790ddffb3d2e6691dcacae08fb0bfa1ae56b6c73d70688b097ffa831af064
