Trojan Hits, Steals, then Cuts Components

Wednesday, April 17, 2013 @ 02:04 PM gHale

A smart Trojan downloader is now out that once it infects a computer, retrieves two component files and once they complete their goals, they end up deleted making them almost invisible.

Once TrojanDownloader:Win32/Nemim.gen!A. hits a computer, the downloader then goes about and retrieves two component files: Virus:Win32/Nemim.gen!A and PWS:Win32/Nemim.A, said researchers at Microsoft’s Malware Protection Center.

Android Trojan Spreads through Botnet
3rd Party Apps a Bug Nightmare
Android Malware Hits Windows PCs
Trojan a Work of ‘Poetry’

The first component is a file infector designed to infect executable files from removable drives, while the second component is a password stealer that can harvest passwords for email accounts set up in the system, Live Messenger, Google Talk, Google Desktop and Google Notifier.

Once these two components achieve their goals, the downloader will delete them in a manner that makes them unrecoverable. This way, attackers can make sure researchers can’t analyze their creation.

Microsoft experts advise users whose computers have suffered infection with this piece of malware to change all their passwords since it is likely attackers have stolen them by the malicious element.

Leave a Reply

You must be logged in to post a comment.