Introducing Trojan.Badlib: A Malware Distribution Network

[Tom172]

Excellent writeup on how trojan badlib funtions:

It is a given that many malicious software threats seen today will download additional software components to perform various activities. With the transition from malware for fun to profit-driven malware and the connected nature of the computer-using population, it is not unusual to see malware threats download other files onto the compromised computers. While there is much public discussion lately about advanced persistent threats (APT) that also make use of software-downloading techniques to augment their capabilities, there are also other malware threats doing the rounds that are not so concerned about industrial espionage and issues of national security. Perhaps it is because the likes of Trojan.Badlib do not necessarily target these types of high-value information that they may be considered of lesser interest. That does not take away from the fact that the Badlib family is an interesting group in its own right.

Read more

 

[jamescv7]

Informative article, so its very new virus yet the symptoms are varied same like other viruses too. Especially disabled Action center is a common effects these days.

 

[Deleted member 178]

i like the fake rogue one, who clean the system of real AV, but a careful user will notify that the fake tray icon is not dynamic anymore, like the avast ball rotation or comodo traffic icon.

 

[win7holic]

thank you for sharing about this, Tomo.