2008 November 25 « iThreats

Another worm exploiting MS08-067

November 25, 2008 Methusela Cebrian Ferrer 2 comments

Win32/Conficker.A is a worm that exploits the MS08-067 vulnerability in order to spread. It may also download and execute various files. Please note that this is a preliminary analysis.

ooOOoo

Symantec identified a new worm, “W32.Downadup,” exploiting the MS08-067 vulnerability, successful against Windows 2000 unpatched targets. [Read SecureComputing.net]

ooOOoo

Kaspersky detection: Trojan-Downloader.Win32.Agent.aqfw

Categories: Daily Thoughts, Emerging Threats, Malwares Tags: loadadv.exe, MS08-067, trafficconverter.biz, W32.Downadup, Win32/Conficker.A, www.getmyip.org

About recent OSX Trojan

November 25, 2008 Methusela Cebrian Ferrer Leave a comment

Good reference and reading for recent OSX trojans:

CA Blog: New Trojans Strike OS X

ArborNetworks: New OS X Malcode: Not Just a DNSChanger

There’s a slight changes on DMG (as graphically shown below), depending on the Remote IP address it’s trying to access.

Categories: Emerging Threats, Malwares Tags: /i386, 78.157.142.187, 94.102.60.106, AdobeFlash, osx ppi, OSX/Jahlav.A, OSX/Lamsev, Perl/Jahlav.A, SH/Jahlav.A

	Bharani on About
	Adrien Pujol on About
	PremierOpinion Revis… on “PremierOpinion” S…
	Dennis D. Hubilla on About
	TheDude on “PremierOpinion” S…

M	T	W	T	F	S	S
« Oct				Dec »
					1	2
3	4	5	6	7	8	9
10	11	12	13	14	15	16
17	18	19	20	21	22	23
24	25	26	27	28	29	30

iThreats

Archive

Another worm exploiting MS08-067

About recent OSX Trojan

Threat Researcher

Blog Stats

Twitter Updates

Pictures of the Day

AV Blogroll

Latest Advisories

Top Posts

Recent Comments

Recent Posts

Meta

Spam Blocked

Archives

Reference

Email Subscription