X

Bitdefender has issued a warning to users not to open any e-mail attachments coming from FedEx that require you to download and print an attached invoice.


Click to enlarge
According to the company, the zipped files does not hold the alleged invoice, but an extremely dangerous piece of malware, known as Trojan.Spy.ZBot or one of its many variants, such as Trojan.Spy.Wsnpoem.HA.

This Trojan was specially engineered to steal sensitive electronic banking data by installing itself in the WindowsSystem32 directory, where it creates the rootkit-hidden wsnpoem folder that it populates with the encrypted ntos.exe, audio.dll and video.dll files (in effect, the two so-called “DLLs” are used for configuration and storage purposes).

It also creates a registry entry that enables automatic launch each time Windows starts up. To harvest the sensitive electronic banking details, it injects code into winlogon.exe and iexplorer.exe processes and downloads one or several files from a remote server. It employs these files to store the data it gathers by monitoring the Web browser activity.

Head of Bitdefender Antimalware Research, Sorin Dudea said, “ZBot and its family have an increased damage potential, as they are able to deactivate the firewall, steal sensitive financial data (such as credit card and account numbers, as well as login details), make screen shots and create logs of current working sessions. In addition, it is capable of downloading supplemental components and providing a remote hacker with the means to access the compromised system. Hence, we strongly recommend you not to open these e-mails and their attachments, and to install and activate a reliable anti-malware, firewall and spam filter solution.”

See: www.bitdefender.com.au

728x90 7 BitDefender Warns Users Of FedEx Trojan
T20SE 728x90 BitDefender Warns Users Of FedEx Trojan
BEL2117 4Square AUF001 728x90 BitDefender Warns Users Of FedEx Trojan
2231 NEXUS 4SQM Digital Banner Ads Leaderboard 728x90 BitDefender Warns Users Of FedEx Trojan
728x90 5 BitDefender Warns Users Of FedEx Trojan
Stormaudio package 728x90 1 BitDefender Warns Users Of FedEx Trojan
LG HE FN Series Banners 4SQM LB 728x90 BitDefender Warns Users Of FedEx Trojan
Versa3 Leaderboard 728x90 BitDefender Warns Users Of FedEx Trojan
audiopro 728x90 2 BitDefender Warns Users Of FedEx Trojan
BW HT Upgrade 728x90 1 BitDefender Warns Users Of FedEx Trojan


YOU MAY ALSO LIKE