New Cridex Banking Trojan variant Surfaces with Self-Spreading Functionality
2014-07-03, 02:36 PM,
#1
[Image: Geodo-banking-malware.png]

Quote:In an effort to infect large number of people, cybercriminals have developed a new malicious software program that contains functionality to spread itself quickly.

Geodo, a new version of the infamous Cridex (also known as Feodo or Bugat) banking information stealing Trojan works in conjunction with a worm that sends out emails automatically to continue its self-spreading infection method, effectively turning each infected Windows system in the botnet for infecting new targets, Seculert warned.

The Infected Windows systems in the botnet network download and install an additional piece of malware (i.e. an email worm) from the Botnet's command and control servers, provided with approximately 50,000 stolen SMTP account credentials including those of the associated SMTP servers.

The stolen SMTP credentials appeared to come from Cridex victims and with the help of those credentials, the malware then sends out emails from legitimate accounts to other potential victims, masquerading itself as a bank or financial organization, in an effort to continue its spread and majority of targets (over 46%) mostly belongs to Germany.

Continue reading here....
Reply
Share This Thread :



Related Threads
Thread Author Replies Views Last Post
  Artificial intelligence will wipe out half the banking jobs YoBroGo 9 314 2018-04-28, 10:00 PM
Last Post: extremee
  Cryptocurrency Mining Virus Spreading Through Facebook Messenger manjeshsingh 10 613 2018-01-08, 06:12 PM
Last Post: faithalo
  After Takedown, GameOver Zeus Banking Trojan Returns Again HawkEye 0 387 2014-07-14, 12:14 PM
Last Post: HawkEye
  WTF - Found Trojan On Fileice Reg Page IndeXer 3 601 2013-10-31, 07:48 PM
Last Post: alexparris





About Us | Contact Us | CPA Elites | Advertise | Stats

© 2013-2018 CPA Elites Ltd
Enhanced by MyBB and WallBB
Return to top