Trend Micro Threat Information Advisory: Bredolab Poses Increasing Pain Point

By on September 2, 2009
submit to reddit

On August 21st, Trend Micro threat researchers published a blog entitled “Laptop Delivery Note Contains Malware” which overviewed a recent spam run in which a malicious attachment poses as an invoice for a laptop purchase. The said attachment is actually a backdoor detected as BKDR_BREDOLAB.AL, which also downloads a RENOS Trojan (RENOS Trojans are known [...]

On August 21st, Trend Micro threat researchers published a blog entitled “Laptop Delivery Note Contains Malware” which overviewed a recent spam run in which a malicious attachment poses as an invoice for a laptop purchase. The said attachment is actually a backdoor detected as BKDR_BREDOLAB.AL, which also downloads a RENOS Trojan (RENOS Trojans are known file downloaders, usually Rogue Antivirus).

(http://blog.trendmicro.com/laptop-delivery-note-contains-malware/)

BREDOLAB malware is gaining ground right now. According to Trend Micro research the criminals behind the common activities attributed to Zeus campaigns have apparently included another module in their deployments.

According to Ivan Macalintal, research program manager “We expect to see much more of this threat down the road as a pain point for Internet users round the world”.

This module has been named Bredolab, and in the past week, Trend Micro threat researchers submitted multiple new variants of this malware which were seen in major criminal campaigns such as the UPS and DHL spam campaigns.

The methods by which it infiltrates PC’s are using the latest exploits (such as PDF, SWF) on malicious web sites and secondly, spammed attachments. Its primary function is to act as a Downloader of sorts and is being seen mainly to have been associated with fakeAV, rootkits, spambots (such as Cutwail), and other info-stealers

Once triggered, Bredolab malware then communicates with a backend management kit that automates what is downloaded, installed and executed to infected PC’s.

Fortunately, new technologies are becoming available to counter these ever growing threats. On a daily basis, Trend Micro Smart Protection Network protects customers from over 1 billion threats.


About

Abbas Jaffar Ali is the founder of tbreak.com and a blogger, geek and self-declared tech pundit who can't stop talking about technology. Find him on twitter as @ajaffarali

Comments
Most Read
Most Commented
Competitions
Win two Toshiba AT200 tablets

This festive season Toshiba has 2 tablets to giveaway.

Win an MSI FM2-A85XA-G65 Motherboard

Thanks to MSI we have an great AMD FM2 motherboard to giveaway.

Win a Nokia Asha 311

Thanks to Nokia we have a great entry-level smartphone to giveaway.