Re: Iframe-Cash/Iframe-Dollars Adware bundle...oooh... my ....go

看板Bugtraq作者advisories.時間19年前 (2007/03/14 02:11)推噓0(0推 0噓 0→)

留言0則, 0人參與討論串2/3 (看更多)

Hi, The BHO you are talking about is part of a banking malware toolkit which is being sold probably. Among other things (password stealer), this BHO has backdoor and "botnet" capabilities, implementing several remote commands: + upload + run + update .... This toolkit also comprises various "infection management system" php scripts : + statistics about infections, countries... + users/victims tracking + logs parsing .... The BHO communicates directly with those scripts for sending and/or receiving captured information and remote commands respectively. Watch out for unexpected http traffic containing commandack.php,mailwab.php.. Cheers, -Rub幯.

‣ 返回看板[ Bugtraq ] 臭蟲

‣ 更多 advisories. 的文章

文章代碼(AID): #15zkbO00 (Bugtraq)