Fraud | DataProtectionCenter.com

PE_XPAJ: Persistent File Infector

23

Oct

2012

We’re currently investigating several file infectors that have affected several countries, particularly Australia. Trend Micro detects these as PE_XPAJ.C, PE_XPAJ.C-1, PE_XPAJ.C-2, and PE_XPAJ.C-O.Based on our initial analysis, these PE_XPAJ variants connect to the following C&C servers to send and receive information: {BLOCKED}.{BLOCKED}.162.208:35516 {BLOCKED}.{BLOCKED}.152.218:35516 {BLOCKED}.{BLOCKED}.71.249:35516 {BLOCKED}.{BLOCKED}.60.108:35516 {BLOCKED}.{BLOCKED}.123.153:35516 {BLOCKED}.{BLOCKED}.132.25:35516 {BLOCKED}.{BLOCKED}.16.5:389 {BLOCKED}.{BLOCKED}.0.1:1056 {BLOCKED}.{BLOCKED}.16.9 {BLOCKED}.{BLOCKED}.16.10 {BLOCKED}.{BLOCKED}.183.224:35516 {BLOCKED}.{BLOCKED}.0.1:1070 {BLOCKED}.{BLOCKED}.16.12:389 {BLOCKED}.{BLOCKED}.4.250:80 […]

Category General Written by Security Intelligence 0 Comments

Fraud abusing Google Docs

18

Oct

2012

Phishing is not exactly a ground-breaking technique. Quite the opposite, it seems like it has been around forever. This is an indicator of its effectiveness: we might think that it is unlikely that people would give away their banking credentials just because they are asked for them, but still there is a percentage who continue […]

Category General Written by Securelist / Blog 0 Comments

Skype Voicemail Spam leads to Blackhole / Zeus Attacks

10

Oct

2012

You’ve probably seen the infection plaguing users of Skype that we wrote about on Friday (and updated on Monday with details of Ransomware and click fraud), but there are other things out there wanting a slice of the Skype Userbase Pie too. Take this spam mail which claims to be a Skype Voicemail notification, for […]

Category General Written by GFI Labs blog 0 Comments

The Latest in IT Security

Posts Tagged ‘Fraud’

PE_XPAJ: Persistent File Infector

Skype Voicemail Spam leads to Blackhole / Zeus Attacks

Categories

Featured

Archives

Latest Comments

About Us

Contact Us