Koobface Update
ESET Latin America has confirmed that the Koobface variants they're looking at download rogue security software and other trojans from active urls.
They include:
Win32/TrojanProxy.Small.NEB trojan
Win32/PSW.Delf.NSE trojan
Win32/Qhost.NTN trojan
Win32/Agent.QWU trojan
a variant of Win32/Koobface.NCI worm
a variant of Win32/Koobface.NCP worm
Win32/Adware.Antivirus2009.AA
David Harley CISSP FBCS CITP
Research Fellow & Director of Malware Intelligence
ESET Threatblog (TinyURL with preview enabled): http://preview.tinyurl.com/esetblog
ESET Threatblog notifications on Twitter:
http://twitter.com/esetresearch; http://twitter.com/ESETblog
ESET White Papers Page: http://www.eset.com/download/whitepapers.php
Securing Our eCity community initiative: http://www.securingourecity.org/
Also blogging at:
http://amtso.wordpress.org/
http://avien.net/blog
http://blogs.securiteam.com
http://blog.isc2.org/
http://macvirus.com/
http://chainmailcheck.wordpress.org
http://smallbluegreenblog.wordpress.com/
Leave a Reply
- David Harley (745)
- Randy Abrams (431)
- Cameron Camp (110)
- Stephen Cobb (60)
- ESET Research (56)
- Pierre-Marc Bureau (51)
- Aryeh Goretsky (30)
- Andrew Lee (15)
- Jeff Debrosse (12)
- Robert Lipovsky (12)
- Paul Laudanski (11)
- Sebastian Bortnik (8)
- Dan Clark (6)
- Righard Zwienenberg (6)
- Sébastien Duquette (5)
- Peter Stancik (4)
- Alexis Dorais-Joncas (3)
- Tasneem Patanwala (3)
- Aleksandr Matrosov (2)
RSS
