It’s been a while since we received and encountered malwares being spammed via email. Usually during the previous weeks, we were busy with the IM worms and 0day exploits, but now we received a trojan downloader being spammed through email. Here is a sample email from being spammed.
Trend will be detecting this downloader as TROJ_SMALL.DFY.
We also received other samples that are to be detected as BKDR_HAXDOOR.AUand TSPY_GAMANIA.CQ, and also another downloader detected as TROJ_DLOADER.EQO and the downloaded component as TSPY_GOLDUN.GQ.
Users should always be cautious in handling unsolicited emails as they are means for malwares to enter your computer system. Be aware of social engineering techniques used in these malicious emails leading for the the attached binary file to be executed or a hyperlink found in the body of the emails to be clicked by the user. Lastly, keep your pattern files updated to be protected from new malwares found “in-the-wild”.
