Ah another trojan, this time targeting MSN Live logins for. The trojan has been made public by some kind citizen calling himself “Our Godfather” on the BitTorrent network.
The sad thing is…I guess it works and hundreds of people will have installed it.
Malware designed to steal users’ Windows Live Messenger password has been released onto the net. The password stealer was released for download via BitTorrent earlier this week by a hacker using the handle “Our Godfather”.
The malware comes in the form of an IMB download confirmed by anti-virus firm Sophos as containing a password-stealing Trojan horse. Victims would need to be tricked into downloading and executing the malware, which might be renamed in a bid to disguise its identity, in order for the exploit to work.
It works a bit like the common phishing schemes, but it uses actual software to emulate the MSN Messenger login screen rather than a web-page.
“It displays a fake Windows Live Messenger Login Screen and prompts for login details. Username and password are captured and stored in C:\pas.txt,” explained Sophos senior technology consultant Graham Cluley.
Sophos has named the malware as MSNfake-M and added protection against the code to its security software packages. Other anti-virus firms can be expected to follow suit.
Another reason to use Sophos I guess, they are always ahead of the curve on this stuff.
Source: The Register
- ParanoiDF – PDF Analysis & Password Cracking Tool
- Windows Registry Infecting Malware Has NO Files
- FakeNet – Windows Network Simulation Tool For Malware Analysis
- New Password Stealing Trojan Targets WoW Players
- Malicious Cryptography – Cryptology & Cryptovirology
- New Trojan Targets World Cup Fans – Troj/Haxdoor-IN
Most Read in Malware:
- Nasty Trojan Zeus Evades Antivirus Software - 77,323 views
- Hospital Hacker GhostExodus Owns Himself – Arrested - 47,470 views
- US considers banning DRM rootkits – Sony BMG - 44,930 views