Trojan.Bredolab is Making Yet Another Comeback.
Created: 27 Oct 2009 11:19:47 GMT
Security Response is aware of a new round of spam replacing old DHL and UPS themes in an attempt to spread Trojan.Bredolab.
Taking a Closer Look at Trojan.Bredolab
Bredolab Delivers More Parcels and Cash
This time the email is masquerading as a notification from Facebook that the recipient’s password has been reset.
The message comes with a .zip file containing a malicious .exe file. Symantec detects the .exe files as Trojan.Bredolab.
This variant of Bredolab connects to a Russian domain and the infected machine is most likely becoming part of a Bredolab botnet.
Please keep your Symantec security product definition files up-to-date.
Please keep your Symantec security product definition files up-to-date.
Blog Entry Filed Under:
About Security Response Blog
Our security research centers around the world provide unparalleled analysis of and protection from malware, security risks, vulnerabilities, and spam.
Filter by:
Recently on Twitter
@threatintel
- threatintel: Pope Themed #Spam Attacks Lead to #Malware http://t.co/CiW7k2W6Hy19 Mar 2013
- threatintel: Android.Uracto Used to Trick Mothers, #Anime Fans, Gamers, and More http://t.co/z9EkHnsqLY #Japan18 Mar 2013
- threatintel: #Android #Malware Spams Victim?s Contacts http://t.co/qsShu5nW6E18 Mar 2013
- threatintel: You can find Symantec?s blog post on MSFT?s March #PatchTuesday updates here: http://t.co/9EP6WSNHwd12 Mar 2013
- threatintel: Latest #Java #ZeroDay Shares Connections with #Bit9 Security Incident - http://t.co/snQWv39IRe01 Mar 2013
Blog Tags
Endpoint Protection (AntiVirus) Spam Malicious Code Online Fraud Vulnerabilities & Exploits phishing Messaging Gateway Message Filter Hosted Mail Security Symantec Protection Suites (SPS) Mail Security for Exchange/Domino Security Risks Email Encryption Emerging Threats Endpoint Encryption Evolution of Security Mobile & Wireless W32.Stuxnet Microsoft Patch Tuesday Android facebook IT Risk Management Trojan.Zbot 11.x 10.x