Abusing Our Sympathies: Sichuan Earthquake Trojan
Friday May 23, 2008 at 10:04 am CST
Posted by Shinsuke Honjo
Malware authors make use of any opportunity to spread malware. Using hot topics is one of the methods to attract users to click on malware files. Recently, we received a specially crafted Microsoft Word file, detected as the Exploit-MSword.b Trojan, which launches a clean Word file to deceive users while in the background it drops a downloader.
The contents of the launched clean is an article about the earthquake in China.
And here is the source for the Word file:
We also received the following Trojan files:
“Earthquake Information.doc.scr”
“photos about earthquake of Sichuan.exe”
This is not the first time that tragic topics are used in malware infections, and users need to keep in mind that malware authors will keep using this method.
May 28th, 2008 at 6:24 am
[…] record that they had detected malicious software attached to some of these spam mails. McAfee also reported malware attached to electronic documents referencing the earthquake. The FBI issued an alert on […]
June 20th, 2008 at 4:15 am
[…] are known for using social engineering to trick users to download themselves. As we mentioned in the blog last month, the topic of the earthquake in China has been used by malware authors for social […]