Home > Latest News > Obscure Trojan Repurposed for Financial Fraud

Obscure Trojan Repurposed for Financial Fraud

Security researchers from browsing security firm Trusteer warn that an older, but relatively obscure, piece of malware has been modified for financial fraud.

The trojan, which the firm dubs Sunspot, is currently detected by only 9 out of the 42 antivirus engines available on Virus Total.

Its infection rate is on par with that of SpyEye and ZeuS in some regions and there have already been confirmed fraud loses associated with it.

Despite having existed for some time, this is a modern and very sophisticated piece of malware. It comes with all the features expected of a banking trojan.

This includes the ability to execute man-in-the-browser attacks like web injections, page grabbing, key-logging and screenshot taking

It can infect both 32 and 64-bit Windows installations and can hook into Internet Explorer and Mozilla Firefox, which makes it comparable to other financial fraud trojans.

Trusteer researchers were able to decrypt its configuration and found out that it received instructions to grab account balance figures, last login date and other information from a victim’s account, as well as ask them for additional financial and personal details.

Advertisements
  1. No comments yet.
  1. No trackbacks yet.

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

%d bloggers like this: