Symantec Connect
  • Login
  • Register
  • Security
    • All of Connect
    • Backup and Archiving
    • Endpoint Management
    • Endpoint Virtualization
    • Storage and Clustering
    • Security
    • Inside Symantec
    • Vision User Conference
    • Partners
    • Developers
    •  
  • Overview
  • Forums
  • Articles
  • Blogs
  • Downloads
  • Events
  • Videos
  • Groups
  • Ideas
Login to participate
Security ResponseRSS

Trojan.Bredolab is Making Yet Another Comeback.

Shunichi Imano
October 27th, 2009
Tags: Endpoint Protection (AntiVirus), Malicious Code, Security, Security Response, Spam, Trojan.Bredolab
Facebook Twitter
Security Response is aware of a new round of spam replacing old DHL and UPS themes in an attempt to spread Trojan.Bredolab.

Taking a Closer Look at Trojan.Bredolab
Bredolab Delivers More Parcels and Cash
 

This time the email is masquerading as a notification from Facebook that the recipient’s password has been reset.

Facebook.PNG
 
The message comes with a .zip file containing a malicious .exe file. Symantec detects the .exe files as Trojan.Bredolab.

This variant of Bredolab connects to a Russian domain and the infected machine is most likely becoming part of a Bredolab botnet.
 
Please keep your Symantec security product definition files up-to-date.
0 votes
  • Shunichi Imano's blog
  • Email this page
  • Comments RSS Feed

About Security Response Blog

Our security research centers around the world provide unparalleled analysis of and protection from malware, security risks, vulnerabilities, and spam.

Filter by:

Filter by:

Recent Blog Posts

  • シマンテック セキュリティ レスポンス ブログ日本語版正式公開のご挨拶
    symantec japan - September 01, 2010
  • Evolution of SEO Poisoning
    Andrea Lelli - September 01, 2010
  • Tidserv后门新变种感染MBR,远程控制用户计算机
    Livian Ge - September 01, 2010
  • ソーシャルネットワークを使用した日本語スパム
    Takako Yoshida - August 30, 2010
  • Catching Flies with Honey
    Gavin O Gorman - August 30, 2010

Blog Tags

10.x 11.x 419 scam 64-bit 9.x and Earlier Adobe Flash Adobe Reader Advanced Persistent Threats AndroidOS.Tapsnake Apple Backdoor.Tidserv Backdoor.Trojan Black Hat 2010 Brazil Brightmail Gateway Clickjacking Cricket World Cup 2011 Earth Day Email Emerging Threats Endpoint Encryption Endpoint Protection (AntiVirus) Endpoint Protection Small Business Enterprise Security Manager Evolution of Security FIFA Father's Day Gary Coleman General Symantec Google ISTR XV IT Risk Management Infostealer.Bancos Infostealer.Gampass Internet Security Threat Report Java Katrina Kaif MPack MS08-067 Malicious Code Master Boot Record Michael Jackson Microsoft Patch Tuesday Misleading Applications Mobile & Wireless Mobile Security Mother's Day Online Fraud Orkut PDF Password Management Restore SCADA SEO Poisoning Security Security Security Risks Security Trends 2010 Soccer Social networking South Africa Spam Spam Survey Sykipot Symantec State of Spam & Phishing Report Trojan.Bredolab Trojan.Clampi Trojan.Dropper Trojan.FakeAV Trojan.Loginck Trojan.Mebratix Trojan.Mebroot Trojan.Mozipowp Trojan.Pidief.J Trojan.Twebot Trojan.Vundo Trojan.Zbot Trojan.Zlob Valentine's Day VirusDoctor Vulnerabilities & Exploits W32.Ackantta W32.Ackantta.B@mm W32.Changeup W32.Downadup W32.Koobface W32.Qakbot W32.Sality W32.Stuxnet W32.Virut W32.Waledac Windows World Cup 2010 World Expo 2010 Zeus conficker endpoint security facebook iPhone 4 iPhone mobile applications jailbreak language spam phishing retrovirus rogue antivirus rootkit scams social engineering social media twitter typosquatting volcano
© 2010
  • Symantec Corporation
  • Contact Us
  • Get RSS
  • Privacy Policy
  • Symantec.com