Trend Micro Facebook TrendLabs Twitter Malware Blog RSS Feed You Tube - Trend Micro
Search our blog:

  • Mobile Vulnerabilities

  • Zero-Day Alerts

  • Recent Posts

  • Calendar

    September 2015
    S M T W T F S
    « Aug    
  • Email Subscription

  • About Us

    MS Office alternatives are becoming attractive to a lot of users because of their competitive pricing and because they are not as targeted by hackers out to find application holes.

    Popular Microsoft is continually under fire because of vulnerabilities found in its products. However, malware authors can also hound lesser-known Microsoft rivals as evidenced by recent infections of a Visual Basic script that targets Sun Microsystemsoffice suite StarOffice (also known as StarSuite in some countries). This VBScript drops a malicious JavaScript, an Internet Relay Chat (IRC) file, and a worm on affected systems. Trend Micro detects it as VBS_BADBUN.A and it affects all Windows, Mac, and Linux OS with StarOffice installed. The name BADBUN comes from an image displayed by one of its dropped files. The said image contains a person wearing a bunny costume.
    The dropped files are detected by Trend Micro as:

    • JS_BADBUN.A – dropped JavaScript
    • IRC_BADBUN.A – dropped .BAD file that replaces a legitimate mIRC file

    The malicious JavaScript and IRC files ensures the spread of this malware “wagon” via the Internet while the worm can ensure spreading capability via other vectors.

    Aside from dropping files, the said VBSript launches a distributed denial of service (DDoS) attack using Ping method against antimalware-related Web sites, including the Trend Micro site.

    It is a very Bad Bunny indeed.

    Share this article
    Get the latest on malware protection from TrendLabs
    Email this story to a friend   Technorati   NewsVine   MySpace   Google   Live   StumbleUpon


    © Copyright 2013 Trend Micro Inc. All rights reserved. Legal Notice