Post by Mickuk on Feb 11, 2006 17:04:19 GMT
Trend Micro Weekly Virus Report
(by TrendLabs Global Antivirus and Research Center)
Date: Friday February 10, 2006
Issue Preview:
1. Trend Micro Updates - Pattern File & Scan Engine Updates
2. Boom, Boom - TROJ_BOMKA.A (Low Risk)
3. Top 10 Most Prevalant Global Malware
4. Malware Threats - What Does it all Mean? Watch our Online Demo
1. Trend Micro Updates - Pattern File and Scan Engine Updates
PATTERN FILE: 3.205.00
SCAN ENGINE: 8.000
2. Threat Advisory - WORM_GREW.A (Low Risk)
TROJ_BOMKA.L may arrive on a system as an attachment to spammed emails, disguised as a non-malicious dart game to entice users into playing it. This non-destructive Trojan is currently spreading in-the-wild and infecting computer systems that run on Windows 98, ME, NT, 2000, XP, and Server 2003.
A rough English translation of the email is:
Subject: you take one pause...
Message Body: I send a game flash!
then you send your score to me max... therefore I say how much I have made I to you... I am training myself:)
bye
{Name of sender}
Possible Attachment: gioco_freccette.zip
Upon execution, this Trojan drops and executes a copy of the legitimate game on the system. This action hides its malicious behavior from the user.
It also drops its .DLL component, which it registers as a Browser Helper Object (BHO) to ensure that it runs every time the user opens Internet Explorer.
This Trojan also attempts to connect to several Web sites to download other files or an update of itself. These downloaded files may be other malware, leaving the affected computer more prone to malicious attacks.
If you would like to scan your computer for TROJ_BOMKA.L or thousands of other worms, viruses, Trojans and malicious code, visit HouseCall, Trend Micro's free, online virus scanner at: housecall.trendmicro.com/
For additional information about the TROJ_BOMKA.L please visit: www.trendmicro.com/vinfo/virusencyclo/default5.asp?VName=TROJ_BOMKA.L
3. Top 10 Most Prevalent Global Malware
(from February 3 to February 9, 2006)
1. WORM_GREW.A
2. SPYW_DASHBAR.300
3. WORM_BAGLE.CL
4. SPWY_GATOR.F
5. HTML_NETSKY.P
6. WORM_NETSKY.P
7. WORM_MOFEI.B
8. JAVA_BYTEVER.A
9. ADW_SLAGENT.A
10. ADW_WEBSEARCH.K
mick
(by TrendLabs Global Antivirus and Research Center)
Date: Friday February 10, 2006
Issue Preview:
1. Trend Micro Updates - Pattern File & Scan Engine Updates
2. Boom, Boom - TROJ_BOMKA.A (Low Risk)
3. Top 10 Most Prevalant Global Malware
4. Malware Threats - What Does it all Mean? Watch our Online Demo
1. Trend Micro Updates - Pattern File and Scan Engine Updates
PATTERN FILE: 3.205.00
SCAN ENGINE: 8.000
2. Threat Advisory - WORM_GREW.A (Low Risk)
TROJ_BOMKA.L may arrive on a system as an attachment to spammed emails, disguised as a non-malicious dart game to entice users into playing it. This non-destructive Trojan is currently spreading in-the-wild and infecting computer systems that run on Windows 98, ME, NT, 2000, XP, and Server 2003.
A rough English translation of the email is:
Subject: you take one pause...
Message Body: I send a game flash!
then you send your score to me max... therefore I say how much I have made I to you... I am training myself:)
bye
{Name of sender}
Possible Attachment: gioco_freccette.zip
Upon execution, this Trojan drops and executes a copy of the legitimate game on the system. This action hides its malicious behavior from the user.
It also drops its .DLL component, which it registers as a Browser Helper Object (BHO) to ensure that it runs every time the user opens Internet Explorer.
This Trojan also attempts to connect to several Web sites to download other files or an update of itself. These downloaded files may be other malware, leaving the affected computer more prone to malicious attacks.
If you would like to scan your computer for TROJ_BOMKA.L or thousands of other worms, viruses, Trojans and malicious code, visit HouseCall, Trend Micro's free, online virus scanner at: housecall.trendmicro.com/
For additional information about the TROJ_BOMKA.L please visit: www.trendmicro.com/vinfo/virusencyclo/default5.asp?VName=TROJ_BOMKA.L
3. Top 10 Most Prevalent Global Malware
(from February 3 to February 9, 2006)
1. WORM_GREW.A
2. SPYW_DASHBAR.300
3. WORM_BAGLE.CL
4. SPWY_GATOR.F
5. HTML_NETSKY.P
6. WORM_NETSKY.P
7. WORM_MOFEI.B
8. JAVA_BYTEVER.A
9. ADW_SLAGENT.A
10. ADW_WEBSEARCH.K
mick