Posts Tagged ‘folders’

Tracking a botnet infection

Jul

2013

Recently we found several malicious executables with similar characteristics. These files were found on the following six domains: janashfordplumbing.com kalliskallis.com lowes-pianos-and-organs.com continental1.com foreigntire.com gjhimages.com The URLs used, adhered to the following two formats: http://www.[domain].com/awstats6_data/[a-f0-9]{10}/?f=sm_main.mp3&k=[0-9]{15} http://www.[domain].com/images/[folder]/[folder]/[a-f0-9]{10}/?f=sm_main.mp3&k=[0-9]{15} These six domains are otherwise legitimate sites that have been compromised and used to serve malicious content. While I didn’t […]

Category Security Written by Zscaler Research 0 Comments

New worm infects removable drives.

Jun

2013

Yet another worm that infects removable drives was discovered. The Win32/SillyAutorun.FTW was recently found in the wild. The worm is written with Microsoft Visual Studio and uses injection engine – worm’s code overwrites the original code in memory. When it runs on infected machine, it firstcopies itself to %ApplicationData%\E-73473-3674-74335\msnrsmsn.exe; where %ApplicationData% is application data folder […]

Category General Written by GLOBAL SECURITY ADVISOR RESEARCH BLOG 0 Comments

ZeuS/ZBOT Malware Shapes Up in 2013

May

2013

The notorious info-stealing ZeuS/ZBOT variants are reemerging with a vengeance, with increased activity and a different version of the malware seen this year. In our 2013 Security Predictions, we predicted that cybercrime will be characterized by old threats resurfacing, but with certain refinements and new features in tow. The 1Q of the year proved this […]

Category General Written by Security Intelligence 0 Comments

The Latest in IT Security

Posts Tagged ‘folders’

Tracking a botnet infection

New worm infects removable drives.

ZeuS/ZBOT Malware Shapes Up in 2013

Categories

Featured

Archives

Latest Comments

About Us

Contact Us