Trojan downloader spam poses as admin email • The Register

Skip to content

Whitepapers

Trojan downloader spam poses as admin email

Taking BOFH's name in vain

By John Leyden • Get more from this author

Posted in Spyware, 8th July 2005 10:51 GMT

Free whitepaper – Securing your Apache web server with a Thawte digital certificate

Two new strains of Trojan downloader have reached near epidemic proportions following an aggressive spamming campaign by hackers this week. Email security firm MessageLabs has intercepted over 54,000 copies of email-borne malware since early Thursday (7 July).

Both downloaders pose as email from the administrator of a user's domain (sample below) in an attempt to dupe users into opening infected emails under bogus threats that their email account will be shut down otherwise. Once activated, the malicious code gives hackers backdoor access to compromised Windows PCs. The difference between the two downloaders is that they pull disparate additional malicious components (keylogger and backdoor) from two different webservers, reports anti-virus firm F-Secure. ®

SUBJECT: Spam Report
ATTACHMENT: report.log.exe

BODY:

Dear <email address> user,

Your e-mail account was used to send a huge amount of unsolicited spam messages during the recent week. If you could please take 5-10 minutes out of your online experience and confirm the attached document so you will not run into any future problems with the online service.

If you choose to ignore our request, you leave us no choice but to cancel your membership.

Virtually yours,

Network Administrator Team

Related stories

UK under cyber blitz
UK trojan siege has been running over a year
Spyware blizzard shows no sign of let up
Why did support @ microsoft send me a virus this morning?
Clueless office workers help spread computer viruses

Free whitepaper – Securing your online data transfer with SSL

Whitepapers

The future of SaaS and IT infrastructure management

This report describes the results of a research project designed to explore the current and planned use of IT Infrastructure Management Solutions in North American companies

The mandate for application security

Read this whitepaper to find out why rapidly evolving technologies like Web 2.0, outsourced development teams and compliance have created an urgent platform for application security.

Extended Validation SSL Certificates

Find out how the EV standard increases the visibility of authentication status through the use of a green address bar in the latest high security web browsers.

Avoiding 7 common mistakes of IT security compliance

This guide covers seven typical IT security compliance errors and outlines the best practices you can immediately apply to your environment to help your company achieve compliance.

The best practices guide for application security

Download to learn about the mandate, the business case, and the executive action plan to jump start an application security program.

Search more Resources

Most read

Webcast: Jumpstart your Application Security initiatives

Don’t Miss

Google cloud told to encrypt itself

Updated R in RSA wants s in https

Buggy 'smart meters' open door to power-grid botnet

Grid-burrowing worm only the beginning

Chinese firm hits back at cyberspy claims

Exclusive Huawei welcomes UK.gov backdoor probe

BlockMaster SafeStick hardware-encrypted USB drive

Review Tough enough?