trojan or a <a href=https://www.enigmasoftware.com/threat-database/keyloggers/2/"/threat-database/rootkits/">rootkit for data collection. Seeing how a keylogger can record all the keyboard input data, cybercriminals can intercept PIN codes, passwords, logins, email addresses, and other sensitive information without any difficulty. Such practice is highly dangerous both on the individual and corporate level, and that is why computer security experts advise users to perform regular system scans with security applications.</span></p><div class="rotatead-container" data-group="location:p_middle" data-title="Keyloggers"></div> <p><img class="alignnone size-full wp-image-524383" src=https://www.enigmasoftware.com/threat-database/keyloggers/2/"https://www.enigmasoftware.com/images/2021/keylogger-process.jpg" alt="keylogger process" width="600" height="348" /></p> <p><em><span style="font-weight: 400">Keylogger Processes – Source: </span><span style="font-weight: 400">Researchgate.net</span></em></p> <h3>Examples of Keylogger Use in Cybercrime</h3> <p><span style="font-weight: 400">There are many malicious infections that employ keyloggers, but to name just a few, perhaps we could start with the Predator Pain Keylogger that includes Browser, File, FTP, and Messenger stealers in its setup.</span> <span style="font-weight: 400">This keylogger usually attacks online gamers, stealing passwords and usernames from Minecraft, Steam, and World of Warcraft users. According to extensive research, the program is usually distributed via infected USB flash drives or P2P websites.</span></p> <p><span style="font-weight: 400">A far more common type of infection that uses keylogging is a trojan. In this case, we could mention the Haxdoor Trojan. This malicious banking trojan appeared in 2006, and it was distributed via spam email messages that looked like legitimate notifications from a bank. This backdoor trojan with rootkit capabilities would collect banking usernames, passwords, credit card information, login details, and other financial information. With this data, the people behind this infection could steal millions of dollars from unsuspecting users.</span></p> <p><span style="font-weight: 400">Another good example of a trojan that employed keylogging is the notorious </span><a href=https://www.enigmasoftware.com/threat-database/keyloggers/2/"/zeustrojan-removal/">Trojan.Zbot that was first discovered in 2010. The goal of this infection is to steal confidential information from the affected computer. Zeus Trojan usually spreads around via spam tools and drive-by downloads. Email messages that distribute this infection usually look like they have been sent from MySpace, Microsoft, Facebook, or any other reliable platform. Users are urged to click a link in the message, and once they do that, they get infected with the trojan. According to various security reports, the Zeus Trojan usually targets banking information, but it can be easily customized to steal other data as well.</span></p> <h3>Keylogger Distribution Method</h3> <p><span style="font-weight: 400">Aside from the cases when keyloggers are installed legally for company security, parental control, or other justifiable purposes, the malicious infections with the keylogging function spread just like any other malware program out there. The distribution methods can be mainly grouped into four categories:</span></p> <ul> <li style="font-weight: 400"><span style="font-weight: 400">spam email</span></li> <li style="font-weight: 400"><span style="font-weight: 400">browser vulnerability exploit</span></li> <li style="font-weight: 400"><span style="font-weight: 400">malicious program</span></li> <li style="font-weight: 400"><span style="font-weight: 400">installer file on a P2P network</span></li> </ul> <p><span style="font-weight: 400">In the case of spam email, users get infected with keyloggers when they open the file attached to the message or click the embedded link. Browser vulnerability exploit refers to a method of malware distribution when the program download is launched automatically once the user visits the infected page. By “malicious program” in the third distribution method, we mean a situation when a keylogger is downloaded to your system by a malicious application that has already been running on your PC. Usually, trojans are able to connect to the Internet behind your back and download more unwanted programs. Finally, a keylogger may also enter your computer when you open its installer file on a P2P network. With this, we can see that when it comes to avoiding this type of threat, a lot depends on the users themselves.</span></p> <h3>How to Avoid Malicious Keyloggers?</h3> <p><span style="font-weight: 400">The most efficient way to protect yourself from this and other types of infections is by installing a licensed anti-malware application. If your computer security tool is up-to-date, it will have all of the currently detected keyloggers in its definition database, and it will be able to intercept them immediately.</span></p> <p><span style="font-weight: 400">Users should also consider using one-time passwords, two-factor authentication, and virtual keyboards when they need to enter sensitive data. You should especially consider it when you use a third-party or a public computer. When it comes to keyloggers, it is not so much your computer that you should be worried about, but your personal information!</span></p><div class="rotatead-container" data-group="location:after_content" data-title="Keyloggers"></div>" /> trojan or a <a href=https://www.enigmasoftware.com/threat-database/keyloggers/2/"/threat-database/rootkits/">rootkit for data collection. Seeing how a keylogger can record all the keyboard input data, cybercriminals can intercept PIN codes, passwords, logins, email addresses, and other sensitive information without any difficulty. Such practice is highly dangerous both on the individual and corporate level, and that is why computer security experts advise users to perform regular system scans with security applications.</span></p><div class="rotatead-container" data-group="location:p_middle" data-title="Keyloggers"></div> <p><img class="alignnone size-full wp-image-524383" src=https://www.enigmasoftware.com/threat-database/keyloggers/2/"https://www.enigmasoftware.com/images/2021/keylogger-process.jpg" alt="keylogger process" width="600" height="348" /></p> <p><em><span style="font-weight: 400">Keylogger Processes – Source: </span><span style="font-weight: 400">Researchgate.net</span></em></p> <h3>Examples of Keylogger Use in Cybercrime</h3> <p><span style="font-weight: 400">There are many malicious infections that employ keyloggers, but to name just a few, perhaps we could start with the Predator Pain Keylogger that includes Browser, File, FTP, and Messenger stealers in its setup.</span> <span style="font-weight: 400">This keylogger usually attacks online gamers, stealing passwords and usernames from Minecraft, Steam, and World of Warcraft users. According to extensive research, the program is usually distributed via infected USB flash drives or P2P websites.</span></p> <p><span style="font-weight: 400">A far more common type of infection that uses keylogging is a trojan. In this case, we could mention the Haxdoor Trojan. This malicious banking trojan appeared in 2006, and it was distributed via spam email messages that looked like legitimate notifications from a bank. This backdoor trojan with rootkit capabilities would collect banking usernames, passwords, credit card information, login details, and other financial information. With this data, the people behind this infection could steal millions of dollars from unsuspecting users.</span></p> <p><span style="font-weight: 400">Another good example of a trojan that employed keylogging is the notorious </span><a href=https://www.enigmasoftware.com/threat-database/keyloggers/2/"/zeustrojan-removal/">Trojan.Zbot that was first discovered in 2010. The goal of this infection is to steal confidential information from the affected computer. Zeus Trojan usually spreads around via spam tools and drive-by downloads. Email messages that distribute this infection usually look like they have been sent from MySpace, Microsoft, Facebook, or any other reliable platform. Users are urged to click a link in the message, and once they do that, they get infected with the trojan. According to various security reports, the Zeus Trojan usually targets banking information, but it can be easily customized to steal other data as well.</span></p> <h3>Keylogger Distribution Method</h3> <p><span style="font-weight: 400">Aside from the cases when keyloggers are installed legally for company security, parental control, or other justifiable purposes, the malicious infections with the keylogging function spread just like any other malware program out there. The distribution methods can be mainly grouped into four categories:</span></p> <ul> <li style="font-weight: 400"><span style="font-weight: 400">spam email</span></li> <li style="font-weight: 400"><span style="font-weight: 400">browser vulnerability exploit</span></li> <li style="font-weight: 400"><span style="font-weight: 400">malicious program</span></li> <li style="font-weight: 400"><span style="font-weight: 400">installer file on a P2P network</span></li> </ul> <p><span style="font-weight: 400">In the case of spam email, users get infected with keyloggers when they open the file attached to the message or click the embedded link. Browser vulnerability exploit refers to a method of malware distribution when the program download is launched automatically once the user visits the infected page. By “malicious program” in the third distribution method, we mean a situation when a keylogger is downloaded to your system by a malicious application that has already been running on your PC. Usually, trojans are able to connect to the Internet behind your back and download more unwanted programs. Finally, a keylogger may also enter your computer when you open its installer file on a P2P network. With this, we can see that when it comes to avoiding this type of threat, a lot depends on the users themselves.</span></p> <h3>How to Avoid Malicious Keyloggers?</h3> <p><span style="font-weight: 400">The most efficient way to protect yourself from this and other types of infections is by installing a licensed anti-malware application. If your computer security tool is up-to-date, it will have all of the currently detected keyloggers in its definition database, and it will be able to intercept them immediately.</span></p> <p><span style="font-weight: 400">Users should also consider using one-time passwords, two-factor authentication, and virtual keyboards when they need to enter sensitive data. You should especially consider it when you use a third-party or a public computer. When it comes to keyloggers, it is not so much your computer that you should be worried about, but your personal information!</span></p><div class="rotatead-container" data-group="location:after_content" data-title="Keyloggers"></div>" />

Change Region

Malware Research Threat Database Keyloggers

Keyloggers

Most Trending Keyloggers in the Last 2 Weeks

# Threat Name Severity Level Alias(es) Detections
1. SC-KeyLog 80 % (High) 27
2. Application.Actual_Keylogger 80 % (High) not-a-virus:Monitor.Win32.ActualSpy
Mal/Generic-L
Generic PWS.y 		5,506
3. Remote KeyLogger 1.0.1.0
4. Spyware.GoldenEye 80 % (High) Logger.CYT
Win-AppCare/Xema.970752
Monitor/Win32.GoldenEye.gen 		32
5. FreeKeylogger 80 % (High) Logger.OEQ
FreeKeyLogger
Trojan.KeyLogger.9239 		490
6. Ardamax Keylogger 80 % (High) ArdamaxKeylogger
not-a-virus:Monitor.Win32.Ardamax.24
Not-A-Virus.Monitor.Win32.Ardamax.24
7. Snake Keylogger
8. Keylogger Zeus
9. Trojan-PWS.Win32.VB PWS:Win32/OnLineGames.GE
Trojan-PSW.Win32.VB.bba
Trojan Horse
10. Keylogger.Revealer 80 % (High) Revealer Free Edition
Trj/Keylog.LH
not-a-virus:Monitor.Win32.RevealerKeylogger.b 		12,146
11. Not-a-virus:RemoteAdmin.Win32.eSurveiller.120
12. KGB Keylogger
13. Hooker Trojan Keylogger
14. FamilyKeyLogger 80 % (High) Logger.C
Win-Trojan/Keylogger.43520.C
Mal/Generic-L 		244
15. Perfect Keylogger 90 % (High) Application/PerfectKeyLog.AP
Logger.ATT
Win-Trojan/Keylogger.405504 		2
16. Spyrix
17. Phoenix Keylogger
18. Trojan-Spy.Carberp 90 % (High) 1,005,573
19. S-400 RAT
20. Hack99 80 % (High) 375

Last updated: 2023-07-03

Threat Name Severity Level Detections
Fade.exe
FamilyKeyLogger 80 % (High) 244
Force Keylogger
Free KGB Key Logger 80 % (High) 684
FreeKeylogger 80 % (High) 490
Gen.Variant.MSILKrypt
Generic Keylogger.ai 90 % (High) 2,978
Generic.dx!nug
Ghost Keylogger 80 % (High) 14
Golden Keylogger 100 % (High) 0
Grind3lwald RAT
Guardian Monitor 100 % (High) 0
H@tKeysH@@k
Hack99 80 % (High) 375
HawkEye Keylogger 80 % (High) 104
HeurEngine.Packed-MaskPE
HomeKeyLogger 80 % (High) 769
Hooker Trojan Keylogger
IamBigBrother 60 % (Medium) 0
Incredible Keylogger 60 % (Medium) 6
Inet 80 % (High) 1,723
Ispy 80 % (High) 0
iSpy Keylogger 80 % (High) 0
KeyBase Keylogger 80 % (High) 250
KeyKey (keylogger) 80 % (High) 74
1 2 3 4 5 6 7 8