Mpack installs ultra-invisible trojan

From Botnets.fr
Revision as of 22:50, 1 December 2012 by Eric.freyssinet (talk | contribs)
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Jump to navigation Jump to search

(Publication) Google search: [1]

Mpack installs ultra-invisible trojan
Botnet Srizbi
Malware
Botnet/malware group
Exploit kits MPack
Services
Feature
Distribution vector
Target
Origin
Campaign
Operation/Working group
Vulnerability
CCProtocol
Date 2007 / 2007-07-05
Editor/Conference International Data Group
Link http://www.computerworld.com/s/article/9026323/Mpack installs ultra invisible Trojan www.computerworld.com (www.computerworld.com Archive copy)
Author Gregg Keizer
Type

Abstract

The notorious Mpack hacker tool kit is installing malware that carries out all its chores -- including spewing spam -- from within the Windows kernel, making it extremely difficult for some security software to detect, Symantec Corp. said today.

The Trojan horse that Symantec has dubbed "Srizbi" is being dropped onto some PCs by the multi-exploit Mpack, a ready-to-use attack application that until recently has been selling for around $1,000. Responsibility for a large-scale attack launched from thousands of hijacked Web sites last month was pinned on Mpack, as was a follow-up campaign waged from compromised Internet porn sites.

Bibtex

 @misc{Lua error: Cannot create process: proc_open(/dev/null): failed to open stream: Operation not permitted2007BFR1256,
   editor = {International Data Group},
   author = {Gregg Keizer},
   title = {Mpack installs ultra-invisible trojan},
   date = {05},
   month = Jul,
   year = {2007},
   howpublished = {\url{http://www.computerworld.com/s/article/9026323/Mpack_installs_ultra_invisible_Trojan www.computerworld.com}},
 }