TechBlog

Take Care Before Valentine: Cupid Struck

ByOmid Farhang February 11, 2010

It’s just a few more days before Valentine’s Day. As most people now are already preparing their celebration, malware authors are also getting ready to use this popular event to target users with their malicious intent.

Here’s one example of a malicious file (2077ed17f0ad92dafb8fb7601570e06580e4b7f1) we’ve seen recently:

Upon execution, it drops the following picture file greeting:

Note: It seems that the malware writers are using valid images from legitimate Web sites.

Cute isn’t it? However, it does not just drop that Valentine related greeting, it also drops and executes the following file:

82.exe – detected as Backdoor:Win32/Bifrose.AE

Backdoor:Win32/Bifrose is a family of backdoor Trojans that allows a remote attacker to access a compromised computer. It usually drops a copy of the backdoor on the following folder:

\bifrost\

and it also creates the following registry entries:
HKLM\SOFTWARE\Bifrost
HKCU\SOFTWARE\Bifrost

You can get more infromation about Backdoor:Win32/Bifrose.AE in our encylopedia entry here.

Please be very cautious in searching for those Valentine greetings from the Internet or opening greeting cards even from your loved ones.

You would want Cupid to strike your heart and not your computer.

Advanced Happy Valentines Day Everyone!!!

TechBlog

Fake Discount Cards
ByOmid Farhang April 24, 2012

Symantec Connect: Phishers are constantly developing new strategies in an effort to trick end users. In April 2012, phishers created sites spoofing the Apple brand with fake offers for Apple discount cards. In this phishing attack, customers were targeted by region: namely, the UK and Australia. The phishing sites mimicked the webpage of Apple and…

Read More Fake Discount Cards
TechBlog

Can spam get worse?
ByOmid Farhang March 19, 2010

Or is it at the saturation point? The SANS Institute (acronym = SysAdmin, Audit, Network, Security) web site carried a blog piece that gives a good snapshot of the horrible ongoing plague of spam email that IT folks all over the globe must deal with. The writer, Deborah Hale, said the ISP in the Midwest…

Read More Can spam get worse?
TechBlog

PCProtectar
ByOmid Farhang January 6, 2010

PCProtectar is the latest rogue security software infecting PC’s across the interwebs. PCProtecter uses false security warnings and system scan results to trick people into buying the software. If your PC has been infected with PCProtectar, don’t fall for the scam. Do not buy this software, it is completely useless and an infection in itself….

Read More PCProtectar
TechBlog

Twitter to Launch Embeddable Tweets?
ByOmid Farhang May 3, 2010

A new blog post from the Twitter media team suggests that the company will launch an embeddable tweets feature sometime tomorrow. Most of the time, when a blog or website wants to add specific tweets to its blog posts, it has to either quote the text or screenshot the tweets and put them in the…

Read More Twitter to Launch Embeddable Tweets?
TechBlog

Phishing
ByOmid Farhang January 13, 2009

What is phishing? Phishing (pronounced “fishing”) is a type of online identity theft. It uses e-mail and fraudulent Web sites that are designed to steal your personal data or information such as credit card numbers, passwords, account data, or other information. Con artists might send millions of fraudulent e-mail messages with links to fraudulent Web…

Read More Phishing
TechBlog

President Obama signs iPad
ByOmid Farhang October 24, 2010

Sylvester Caan dropped us a note to tell us (and show us!) his iPad being signed by US President Barak Obama. Take it away, Sylvester: At a rally in Seattle, WA at the University of Washington, the President used the touchscreen on my iPad to give me his autograph. He looked slightly surprised, but proceeded…

Read More President Obama signs iPad

Similar Posts