Illegal Keygen for Reputed Antivirus Comes Bundled with Malware

Jack

Administrator
Thread author
Verified
Staff Member
Well-known
Jan 24, 2011
9,379
An illegal key generator for the recently released version of the TrustPort Internet Security solution leads to a serious infection warns BitDefender.

BitDefender said:
It is common practice for crooks to use pirated software as a means of disseminating malware. It’s an approach that has been used for years and it still works as a charm. Any new software product launch is awaited and included into this malware distribution cycle. A much anticipated movie or software product becomes the perfect lure for users who are inclined towards piracy rather than legal product or service acquisition.

This is exactly the scenario we spotted last week, when crooks started using the latest Internet Security avtivirus product from Trustport as bait for malware dissemination. They tampered with an illegal keygen (identified by our labs as Application.Keygen.BW) in order to bind it with a piece of backdoor malware that is also deployed on the users’ systems along with an illegal key for the AV product.

This keygen spreads via P2P sharing services, USB media, instant messaging services or e-mail clients and users may end up downloading serious trouble on their systems as this particular illicit tool does a lot more than it is supposed to do.

Read more....

Depending on how you’re using your computer, this piece of malware does the following:

  • steals passwords cached in various web browsers such as Mozilla Firefox or Internet Explorer
  • spies on the users’ habits and gathering critical information about the compromised computer and, worst of all, showing great interest for all that has to do with e-banking accounts and money transactions;
  • downloading further malware either via internet or from ftp accounts; the sample we analyzed is capable of downloading and installing Zeus BOT, SpyNet RAT, Bandook RAT, Scwarze Sonne RAT, Apocalypse RAT, Bff BOT, Solitude RAT, PoisonIvy, Cybergate, which hints to a possible cooperation between Trojan.Agent.ASDMand other cyber-criminal gangs.;
  • captures video and audio streams from the users’ computer webcams;
  • logs conversations that take place on social networks or instant messenger;
 

Jack

Administrator
Thread author
Verified
Staff Member
Well-known
Jan 24, 2011
9,379
Hungry Man said:
Which AV?

So silly... you can protect yourself fine with free software.

TrustPort Internet Security .... Agree but you know there are a ton of people who think that PAID IS BETTER!
 

eXPerience

Level 1
Mar 7, 2011
248
Not really news :p. tools like this have been going around for years... But the new thing is that it's more like a keylogger than a Pest saying you should by it instead of cracking it !

Thanks for the article Jack

eXp
 
D

Deleted member 178

agree with Jack, just use a free AV suite, no need keygens.

honestly, CIS is surely better than TrustPort IS ^^
 

jamescv7

Level 85
Verified
Honorary Member
Mar 15, 2011
13,070
Very common, illegal keys are anywhere in the internet so if they found that the key was good like year 2050 then definitely they will grabbed it.
 
I

illumination

umbrapolaris said:
agree with Jack, just use a free AV suite, no need keygens.

honestly, CIS is surely better than TrustPort IS ^^

TrustPort actually scored the highest on Virus Bulletins Latest Comparative for August 2011.. Although, i still do not recommend to anyone to use Illegal keygens.. If you are going to use a paid product, you should pay, if not, then there are plenty of free programs that are effective..
 

win7holic

New Member
Apr 20, 2011
2,079
Agree but you know there are a ton of people who think that PAID IS BETTER!
i agree with you jack ;)
no one perfect product even paid version, because in this world no one perfect. always have plus and minus.
but, there have way is "combining" each other to get better protection.
 

jamescv7

Level 85
Verified
Honorary Member
Mar 15, 2011
13,070
Another way was:

Joining like giveaway, contest, or discount for the specified products. And if you're lucky then you have a genuine license.
 

Gnosis

Level 5
Apr 26, 2011
2,779
I wish that MBAM Pro would integrate AV protection, then I could be done with AV's and utilize MBAM Pro only.
 
D

Deleted member 178

ZOU1 said:
I wish that MBAM Pro would integrate AV protection, then I could be done with AV's and utilize MBAM Pro only.

and i also wish MBAM pro uses less RAM.
 

jamescv7

Level 85
Verified
Honorary Member
Mar 15, 2011
13,070
ZOU1: Yeah, since their detection rates are good and can handle even zero day malware.
 

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

User Menu

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top