Sep11 |
10:20 am (UTC-7) | by
Paul Oliveria (Technical Communications) |
Football season is here! The 2007 NFL just started last September 6th and already the NUWAR/Storm malware family is attempting to make a pass at unsuspecting (dare I say “fumbling”, in the spirit of football pun?) users by posing as an online game tracker. TrendLabs has received the following sample as one of the messages that are being aggressively spammed these days:
Clicking the link redirects recipients of the message to a Web site where the file tracker.exe can be downloaded. Not surprisingly, the said online tracker is actually a copy of the malware.
TrendLabs will detect this particular sample as WORM_NUWAR.AQN. We have also received similar samples, which we already detect as TROJ_TIBS.ARR.
As always, users are advised to avoid clicking on links that arrive on suspicious email messages.
Additional data provided by Ryan Flores and Lalaine Gregorio
Share this article |
 |
        |
Pingback: Information Security and NFL Espionage · Security to the Core | Arbor Networks Security Blog