Trojan.Bredolab is Making Yet Another Comeback.
Security Response is aware of a new round of spam replacing old DHL and UPS themes in an attempt to spread Trojan.Bredolab.
Taking a Closer Look at Trojan.Bredolab
Bredolab Delivers More Parcels and Cash
This time the email is masquerading as a notification from Facebook that the recipient’s password has been reset.
The message comes with a .zip file containing a malicious .exe file. Symantec detects the .exe files as Trojan.Bredolab.
This variant of Bredolab connects to a Russian domain and the infected machine is most likely becoming part of a Bredolab botnet.
Please keep your Symantec security product definition files up-to-date.
Please keep your Symantec security product definition files up-to-date.
About Security Response Blog
Our security research centers around the world provide unparalleled analysis of and protection from malware, security risks, vulnerabilities, and spam.
Filter by:
Blog Tags
10.x 11.x 9.x and Earlier Brightmail Gateway Emerging Threats Endpoint Encryption Endpoint Protection (AntiVirus) Evolution of Security General Symantec How to IT Risk Management Internet Security Threat Report Malicious Code Mobile & Wireless Online Fraud Platforms & Hardware Restore Security Security Security Risks Spam Vulnerabilities & Exploits Windows