Researcher discovers new malware
Posted by: Timothy Weaver on 06/16/2014 11:07 AM [ Comments ]
RSA researcher Eli Marcus claims to have found an entirely new trojan during his trawls of the criminal underground.
Dubbed "Pandemiya", comprises about 25,000 lines of fresh code. Entirely new code is a rarity.
Marcus says it can steal data from forms, create fake web pages and take screen shots to send back to the botmasters who deploy it.
The basic malware goes for $US1,500. An upgraded version sells for $US2,000.
Marcus writes that: "The advent of a freshly coded new trojan malware application is not too common in the underground. He adds that the modular approach means Pandemiya could become "more pervasive in the near future."
Pandemiya is delivered by exploit kits and drive-by infections that target vulnerabilities in buggy wares such as Java, Silverlight and Flash.
Pandemiya can be removed with a little registry-tweaking and command line action.
Dubbed "Pandemiya", comprises about 25,000 lines of fresh code. Entirely new code is a rarity.
Marcus says it can steal data from forms, create fake web pages and take screen shots to send back to the botmasters who deploy it.
Marcus writes that: "The advent of a freshly coded new trojan malware application is not too common in the underground. He adds that the modular approach means Pandemiya could become "more pervasive in the near future."
Pandemiya is delivered by exploit kits and drive-by infections that target vulnerabilities in buggy wares such as Java, Silverlight and Flash.
Pandemiya can be removed with a little registry-tweaking and command line action.
Comments