Sep11
10:20 am (UTC-7)   |   by Paul Oliveria (Technical Communications)

Football season is here! The 2007 NFL just started last September 6th and already the NUWAR/Storm malware family is attempting to make a pass at unsuspecting (dare I say “fumbling”, in the spirit of football pun?) users by posing as an online game tracker. TrendLabs has received the following sample as one of the messages that are being aggressively spammed these days:

IP_Spam_Football.gif

Clicking the link redirects recipients of the message to a Web site where the file tracker.exe can be downloaded. Not surprisingly, the said online tracker is actually a copy of the malware.

TrendLabs will detect this particular sample as WORM_NUWAR.AQN. We have also received similar samples, which we already detect as TROJ_TIBS.ARR.

As always, users are advised to avoid clicking on links that arrive on suspicious email messages.

Additional data provided by Ryan Flores and Lalaine Gregorio

If you're new here, you may want to subscribe to our RSS feed. Thanks for visiting!



This entry was posted on Tuesday, September 11th, 2007 at 10:20 am and is filed under Uncategorized . Responses are closed, but you can trackback from your own site.



One Response to “Storming for a touchdown!”

  1. Information Security and NFL Espionage · Security to the Core | Arbor Networks Security Blog Says:
    September 16th, 2007 at 8:51 pm

    [...] bombarded with e-card Storm malware spam, to yet another NFL-driven social engineering vector, as outlined by our friends at TrendsLabs. And, of course, given that this is employing social engineering [...]


Worm Googles its way to inboxes
IcePack packing heat


 
TrendWatch Hijack This Web Protection Add-On
Free Online Virus Scan Rootkit Buster Submit Suspicious Files
Global Malware Map RUBotted? Trend Micro
 

 
© Copyright 2009 Trend Micro Inc. All rights reserved. Legal Notice