New viral sample (Feb 10 / 2014) ZUAT / Zbot / AXIX

Do you have a question? Post it now! No Registration Necessary.  Now with pictures!

Threaded View
+ User FidoNet address: 1:3634/12.71
On Sun, 09 Feb 2014, Virus Guy wrote to All:

 VG> No http conversations, no DNS lookups.  Not sure what the program
 VG> was trying to do.

considering that at least one named it as an injector, one might hazard a guess
that it inserts itself into the browser's connection stream and injects ads or
similar... the browser would be doing the connections and lookups...

)\/(ark

One of the great tragedies of life is the murder of a beautiful theory by a
gang of brutal facts. --Benjamin Franklin
+++++++++++++++++++++++++++++++++++++++++++++++++++++++
+ The FidoNet News Gate (Huntsville, AL - USA)        +
+ The views of this user are strictly his or her own. +
+ All data is scanned for malware by Avast! Antivirus +
+++++++++++++++++++++++++++++++++++++++++++++++++++++++

---
This email is free from viruses and malware because avast! Antivirus protection is active.
http://www.avast.com


Re: New viral sample (Feb 10 / 2014) ZUAT / Zbot / AXIX

+ User FidoNet address: 1:3634/12.71
On Mon, 10 Feb 2014, FromTheRafters wrote to All:


Quoted text here. Click to load it

 F> Timed out. It might have been sleeping.

haha... probably true :)  that or i'm still in their filters :shrug: ;)

)\/(ark

One of the great tragedies of life is the murder of a beautiful theory by a
gang of brutal facts. --Benjamin Franklin
+++++++++++++++++++++++++++++++++++++++++++++++++++++++
+ The FidoNet News Gate (Huntsville, AL - USA)        +
+ The views of this user are strictly his or her own. +
+ All data is scanned for malware by Avast! Antivirus +
+++++++++++++++++++++++++++++++++++++++++++++++++++++++

---
This email is free from viruses and malware because avast! Antivirus protection is active.
http://www.avast.com


Site Timeline