It stealing images (JPG, .JPEG, and .DMP files.) in the infected drive then send it to a remote FTP server.
If you want more infos: http://about-threats.trendmicro.com/us/malware/TSPY_PIXSTEAL.A
And yeah, there is a lot of stuff on the FTP...
Sunday, 4 November 2012
W32/PixSteal.A
Another weird malware...
It stealing images (JPG, .JPEG, and .DMP files.) in the infected drive then send it to a remote FTP server.
If you want more infos: http://about-threats.trendmicro.com/us/malware/TSPY_PIXSTEAL.A
The grabbed images could be used in various cyber crimes, black mailing, identity theft and maybe for future attacks.
And yeah, there is a lot of stuff on the FTP...
It stealing images (JPG, .JPEG, and .DMP files.) in the infected drive then send it to a remote FTP server.
If you want more infos: http://about-threats.trendmicro.com/us/malware/TSPY_PIXSTEAL.A
And yeah, there is a lot of stuff on the FTP...
Subscribe to:
Post Comments (Atom)
Tout le monde ne cache pas l'ip comme tu le fais ;)
ReplyDeletehttp://www.threatexpert.com/report.aspx?md5=b9db4cb77654c9b70a2bc447c1f686de
ça c'est pas mon problème, je cache les numéros ICQ, e-mails, whatever de sensible par éthique.
ReplyDeleteAprès libre à la personne intéressé par mon billet d’approfondir les recherches pour satisfaire ça curiosité.
Were the FTP credentials hardcoded in the malware?
ReplyDeletenope, plaintext
ReplyDelete