Trend Micro Facebook TrendLabs Twitter Malware Blog RSS Feed You Tube - Trend Micro
Search our blog:

  • Recent Posts

  • Calendar

    October 2014
    S M T W T F S
    « Sep    
     1234
    567891011
    12131415161718
    19202122232425
    262728293031  
  • About Us

    Just last March, TROJ_ANICMOO.AX made a name for itself by exploiting a vulnerability in the way Windows handles animated cursors. In the form of a malicious .ANI file, this Trojan is known to download other malware from certain URLs. Now, two months after its discovery, TROJ_ANICMOO.AX is still around, being hosted by malicious websites such as this one.


    anicmoo-site.jpg

    This particular site has been disabled by its hosting company because of the malware that it contains, among them TROJ_ANICMOO.AX. Aside from this malware, two more Trojans can be downloaded from this site: TSPY_LDPINCH.AHY (which is reputed to be a password stealer) and TROJ_AGENT.RZR.

    The proliferation of sites with malware content is becoming the mainstream vector for malware distribution. Users are advised not to visit untrusted sites. As a security measure, users can use Google to search for the URL first, instead of directly accessing it. The search result (like the one illustrated above) is most likely to give you a heads up warning if it hosts malicious content or not.





    Share this article
    Get the latest on malware protection from TrendLabs
    Email this story to a friend   Technorati   NewsVine   MySpace   Google   Live   del.icio.us   StumbleUpon




    Comments are closed.



     

    © Copyright 2013 Trend Micro Inc. All rights reserved. Legal Notice