Upatre, Dyre used in Univ. of Florida attack

From Botnets.fr
Jump to navigation Jump to search
The printable version is no longer supported and may have rendering errors. Please update your browser bookmarks and please use the default browser print function instead.

(Publication) Google search: [1]

Upatre, Dyre used in Univ. of Florida attack
Botnet Upatre, Dyre
Malware
Botnet/malware group
Exploit kits
Services
Feature
Distribution vector
Target
Origin
Campaign
Operation/Working group
Vulnerability
CCProtocol
Date 2015 / 2015-01-29
Editor/Conference SC Magazine
Link http://www.scmagazine.com/multi-malware-multistage-attack-infects-uf-users-computers/article/395279/ (Archive copy)
Author Teri Robinson
Type

Abstract

A Windows ScreenSaver executable inside a ZIP file attached to email distributed multiple malware in multiple stages to the computers of hundreds of University of Florida (UF) students and faculty.

Email sent out Monday morning appeared to be from a UF user and had a subject line that read “You have a new fa.” Opening the attachment and executing the SCR file unleashed a little recognized variant of the Upatre downloader trojan which cloned user IDs and sent out email notifications with the subject line “Upatre Infection” to other users in the network.

Bibtex

 @misc{Lua error: Cannot create process: proc_open(/dev/null): failed to open stream: Operation not permitted2015BFR417,
   editor = {SC Magazine},
   author = {Teri Robinson},
   title = {Upatre, Dyre used in Univ. of Florida attack},
   date = {29},
   month = Jan,
   year = {2015},
   howpublished = {\url{http://www.scmagazine.com/multi-malware-multistage-attack-infects-uf-users-computers/article/395279/}},
 }