HomeInternetFake Christmas Card and New Year Greeting Malwares discovered by F-Secure

Fake Christmas Card and New Year Greeting Malwares discovered by F-Secure

Screenshot of the fake Christmas Card

Jingle Jingle Bells Jingle all the Way, Oh, what fun it is to spam in your inboxes night and day! This would perhaps be the thought running in the minds of all the perpetrators of the greeting card spam serving as a cover for malicious downloads, striking inboxes in the form of fake Christmas cards.

Security expert F-Secure has discovered several Christmas card malware that is doing the rounds of the internet throughout the world. The links that are set in an email are cloaked and point to a fake Yahoo greeting card website, run along with American Greetings.

- Advertisements -

The site asks the user to click the UPLS present in the message, after which a bogus website pops up with a request to download the new Adobe Flash Player version, which in reality is a malicious software known as “macromedia- flashplayerupdate.exe”

F-Secure spots this file as an Agent variant, which gathers several types of data from the infected machine and sends it back to the malware author through a website.

And after Christmas comes the New Year, and that’s exactly the trend even the malware follows. Next after the Christmas malware is Happy New Year….exe which is another spam to worry about this season. According to F-Secure, here’s what the spam reads:

- Advertisements -

F-Secure found that some clown is spamming around an attachment called
Happynewyear.exe (md5: 978f25a5ef399b7090454ae2ca4fc364).

This is how the spam works. When run, this malware drops a nice Christmas tree to your desktop and Systray.

The malware itself (detected as Trojan-PSW:W32/Delf.BBE by our antivirus) steals passwords and other assorted information and sends them to lbss.3322.org.

- Advertisements -

Stay away, don’t click, et cetera.

Patrik Runald, Senior Security Specialist, F-Secure Security Labs APAC stated, “The popularity of e-cards provides a fertile ground for malware authors.” Adding, “Spammers have a long tradition of trying to lure people from emotional responses like e-cards. We suggest users to pay attention to suspicious email and keep update your anti-virus software or use manual removal tool to delete any .exe file.”

Well on this note, hope 2008 is a safer year for the internet!

- Advertisements -