Trend Micro Facebook TrendLabs Twitter Malware Blog RSS Feed You Tube - Trend Micro
Search our blog:

  • Recent Posts

  • Calendar

    September 2014
    S M T W T F S
    « Aug    
     123456
    78910111213
    14151617181920
    21222324252627
    282930  
  • About Us
    TrendLabs Security Intelligence Blog(breadcrumbs are unavailable)

    Archive for the ‘Botnets’ Category




    The Andromeda botnet - first spotted in late 2011 - has recently resurfaced. This threat arrives via a familiar means: spammed messages with malicious attachments or links to compromised websites hosting Blackhole Exploit Kit (BHEK) code. Here is one spam message we saw recently: Figure 1. Sample spammed message Andromeda itself is highly modular, and can incorporate various modules, such as: Keyloggers Form grabbers SOCKS4 proxy module Rootkits As is typical of backdoors, it can download and execute other files like ZeuS, as well as update and ...

    Posted in Botnets, Malware | Comments Off


    Mar4
    7:12 am (UTC-7)   |    by

    While spam botnets are well-known for sending out unwanted ads, especially for “rogue” pharmaceutical companies, they are also an integral component of malware distribution. In addition to sending out their own malware so that they can increase the size of their botnet, the miscreants behind these operations also earn revenue by installing additional malware supplied by Pay-Per-Install (PPI) affiliates, or “partnerkas”. We have examined the operations of the infamous Asprox spam botnet in some detail. Asprox is known for sending spam ...

    Posted in Botnets, Malware, Spam | Comments Off



    Trend Micro has been working and collaborating with law enforcement agencies such as Federal Bureau of Investigation and Office of the Inspector General (OIG) in taking down Rove Digital, an Estonia-based cybercriminal gang. Recently, Valeri Aleksejev, one of the members of Rove Digital pleaded guilty to charges of wire and computer intrusion in the District Court for the Southern District of New York in Manhattan last week. Aleksejev served as one of the programmers/coders for the Rove Digital operation. He is ...

    Posted in Botnets | Comments Off



    Expecting an online booking or package delivery confirmation? Just make sure to avoid these fake email messages serving BKDR_KULUOZ.PFG. This backdoor was first seen in the wild around April to June of 2012 and a part of a well-known botnet. However, we have recently been noticing several spam variants carrying this malware, like the one below: Figure 1. Sample FedEx spammed message BKDR_KULUOZ arrives in the form of attachments (usually archived) in spammed messages. These email messages typically spoof well-known corporations. So far, the ...

    Posted in Botnets, Malware, Spam | Comments Off



    Cybercriminals today create and use botnets to perpetrate their criminal activities.  Whether it is to send out Blackhole Exploit Kit spam or to use as entry points into organizations, the one constant is that most bots (victim computers) communicate back and forth with command and control (C&C) servers.  Trend Micro’s Global Threat Intelligence, derived from our Smart Protection Network™, monitors C&C servers, infected Bots, and the malicious communication between the two regularly to ensure our customers are protected. Today we’re publishing ...

    Posted in Botnets | Comments Off


     

    © Copyright 2013 Trend Micro Inc. All rights reserved. Legal Notice