Although the FBI, Europol, Microsoft’s Digital Crime Unit and several others companies and organizations
took action against the Gamarue botnet in November last year, there are still 12 million Windows PC infected with the malware. The information comes from Microsoft’s 23rd Security Intelligence Report.
Gamarue, also known as Andromeda, has been active since 2011 and is distributed through email attachments, social media, drive by downloads and removable media. The malware allows cybercriminals to take full control over the computer of victims. The infected computers, part of the Gamarue botnet, were used for all kinds of criminal activities, such as DDOS attacks, spam and click fraud. Infected computers were sometimes also further infected with ransomware, banking malware or other types of malware.
Criminals can purchase several modules from the Gamarue owners such as a key logger, rootkit, form data capturer and a ‘Teamviewer’ module.
....
....
....
