Threat Category: Windows malware | Page 26

The year 2007 can be dubbed “the year of online-world fraud” or perhaps “the year of exploiting poor gamers”.

Over the last couple of days we’ve seen spam being sent out which contains a link in it claiming to be a Paris Hilton video.

For the second month in a row, representatives of the new Trojan-Downloader family Diehard have been creating a considerable stir in mail traffic.

There’s no such thing as New Year in the virus world. Statistics for January show that the malware and potential malicious programs in circulation are remarkably similar to those in last month’s rankings.

Greediest Trojan targeting banks, most common virus/worm family, most common Trojan family, most common malicious program in email traffic and others.

In place of the traditional and somewhat dull domination of the rankings by old email worms, in December we encountered the explosive propagation of a new generation of programs.

A look at the December statistics makes it possible for us to draw some preliminary conclusions about the malware landscape in 2007.

Yesterday I was taking a look at a new backdoor with MSN-Worm functionality, Backdoor.Win32.VB.bsf. This backdoor is specifically designed to steal (bank related) passwords and to spy on the user

Although the malicious programs leading November’s 2007 Email Top Twenty have changed, the data once again highlights the absence of any serious epidemics in mail traffic

In November, our online statistics returned to their usual state of flux: there are 11 new malicious programs in the Top Twenty, a new leader and it’s very unclear what the future may hold

Over the last couple of days I’ve been looking at some of the latest tricks used by the creators of some adware – Virtumonde a.k.a Vundo.

Greediest Trojan targeting payment systems, stealthiest malicious program, most common malicious program in mail traffic, most common Trojan family and others.

Our online virus scanner’s October rankings are a bit unusual. What makes them stand out from previous months is a stability that we have not seen before.

If this month’s Top Twenty had been prepared using data from the first 26 days of October, two important malware related events would have been missing

This half-year report examines changes in malware compared with to the second half of 2006.

Reports

Kaspersky researchers analyze updated CoolClient backdoor and new tools and scripts used in HoneyMyte (aka Mustang Panda or Bronze President) APT campaigns, including three variants of a browser data stealer.

Kaspersky discloses a 2025 HoneyMyte (aka Mustang Panda or Bronze President) APT campaign, which uses a kernel-mode rootkit to deliver and protect a ToneShell backdoor.

Kaspersky GReAT experts analyze the Evasive Panda APT’s infection chain, including shellcode encrypted with DPAPI and RC5, as well as the MgBot implant.

Kaspersky expert describes new malicious tools employed by the Cloud Atlas APT, including implants of their signature backdoors VBShower, VBCloud, PowerShower, and CloudAtlas.

Windows malware

Trend of the year: the evolution of malicious programs targeting players of online games

Paris Hilton spam

Virus Top 20 for January 2008

Online Scanner Top Twenty for January 2008

Malware Miscellany, December 2007

Virus Top 20 for December 2007

Online Scanner Top Twenty for December 2007

Calling the hyve

Virus Top 20 for November 2007

Online Scanner Top Twenty for November 2007

Virtumonde/Vundo goes file infector

Malware Miscellany, October 2007

Online Scanner Top Twenty for October 2007

Virus Top 20 for October 2007

Malware evolution: January – July 2007

Reports

HoneyMyte updates CoolClient and deploys multiple stealers in recent campaigns

The HoneyMyte APT evolves with a kernel-mode rootkit and a ToneShell backdoor

Evasive Panda APT poisons DNS requests to deliver MgBot

Cloud Atlas activity in the first half of 2025: what changed

Subscribe to our weekly e-mails