Welcome to our

Cyber Security News Aggregator

.

Cyber Tzar

provide a

cyber security risk management

platform; including automated penetration tests and risk assesments culminating in a "cyber risk score" out of 1,000, just like a credit score.

Is It Android malware? Is it Ransomware? Is it a banking Trojan?

published on 2013-09-16 13:51:00 UTC by Trojan7Malware
Content:
I recently was added to a list titled "Avast Pro Free". I decided to take a look as I knew anti virus it a common way blackhats spread malware. The account which added me (now suspended) had hxxp://thecheatplanet(dot)com/avast-keygen/ in the profiles bio. URL query gives analysis of http://urlquery.net/report.php?id=5433826 (leads to BlackHole).

What's next? 
I decided to complete the survey and add what I get as the program. What I found is quite common and clever. 

Android file: 

Visiting via IE? Say hello to Reventon
Upon completing the survey reventon was downloaded. https://www.virustotal.com/en/file/1d15274264adcbfa333aef2bee42f46c7a1d786d56f0ec611d7c786db0fb1ef4/analysis/ it's old,non FUD and incredibly skid like.

The above two steps are only available if you're not exploited by BlackHole. If you're, you now become infected with mevade. For anyone who's lived under a rock mevade is the bot believed to be causing the huge spike in tor clients. Analysis is available at https://www.virustotal.com/en/file/8d19ae32b5d30b6598fd80c89cea57d5d55c33ebac001ba623a4c4c8bca70b62/analysis/ again, non FUD. Damn malware skids
Article: Is It Android malware? Is it Ransomware? Is it a banking Trojan? - published over 10 years ago.

http://trojan7malware.blogspot.com/2013/09/is-it-android-malware-is-it-ransomware.html   
Published: 2013 09 16 13:51:00
Received: 2021 06 06 09:05:03
Feed: Trojan7Malware
Source: Trojan7Malware
Category: Cyber Security
Topic: Cyber Security
Views: 0

Custom HTML Block

Click to Open Code Editor