Trend Micro Facebook TrendLabs Twitter Malware Blog RSS Feed You Tube - Trend Micro
Search our blog:

  • Recent Posts

  • Calendar

    August 2014
    S M T W T F S
    « Jul    
     12
    3456789
    10111213141516
    17181920212223
    24252627282930
    31  
  • About Us

    MS Office alternatives are becoming attractive to a lot of users because of their competitive pricing and because they are not as targeted by hackers out to find application holes.

    Popular Microsoft is continually under fire because of vulnerabilities found in its products. However, malware authors can also hound lesser-known Microsoft rivals as evidenced by recent infections of a Visual Basic script that targets Sun Microsystemsoffice suite StarOffice (also known as StarSuite in some countries). This VBScript drops a malicious JavaScript, an Internet Relay Chat (IRC) file, and a worm on affected systems. Trend Micro detects it as VBS_BADBUN.A and it affects all Windows, Mac, and Linux OS with StarOffice installed. The name BADBUN comes from an image displayed by one of its dropped files. The said image contains a person wearing a bunny costume.
    The dropped files are detected by Trend Micro as:


    • JS_BADBUN.A – dropped JavaScript
    • IRC_BADBUN.A – dropped .BAD file that replaces a legitimate mIRC file
    • WORM_BADBUN.A



    The malicious JavaScript and IRC files ensures the spread of this malware “wagon” via the Internet while the worm can ensure spreading capability via other vectors.

    Aside from dropping files, the said VBSript launches a distributed denial of service (DDoS) attack using Ping method against antimalware-related Web sites, including the Trend Micro site.

    It is a very Bad Bunny indeed.





    Share this article
    Get the latest on malware protection from TrendLabs
    Email this story to a friend   Technorati   NewsVine   MySpace   Google   Live   del.icio.us   StumbleUpon






     

    © Copyright 2013 Trend Micro Inc. All rights reserved. Legal Notice