Malware distributed by fake parking tickets

Discussion in 'BlackHat Lounge' started by obtuse, Feb 5, 2009.

  1. obtuse

    obtuse Newbie

    Joined:
    Jan 20, 2009
    Messages:
    27
    Likes Received:
    11
    Occupation:
    depends on what's needed
    lol............ Now this was just too funny. Talk about being "creative" with their target marketing!


    A malware infection was propagated through flyers put on windshields in Grand Forks, North Dakota, reports SANS institute.

    The flyers were fake parking violation notices, and instructed people to visit a website (which SANS did not publicize). Once they visited the website, they were infected with a malicious browser helper object.

    From the post:

    "The initial program installed itself as a browser helper object (BHO) for Internet Exploter that downloaded a component from childhe.com and attempted to trick the victim into installing a fake anti-virus scanner from bestantispyware securityscan.com and protectionsoft warecheck.com."
     
    • Thanks Thanks x 1
  2. albertb

    albertb Registered Member

    Joined:
    Nov 18, 2008
    Messages:
    53
    Likes Received:
    9
    Lol, its the Virtumonde/Vundo trojan probably the one that Luxecash distributes. The idea sure is creative but he could have used it a lot better.
     
  3. MoneyMachine

    MoneyMachine Junior Member

    Joined:
    Nov 22, 2008
    Messages:
    149
    Likes Received:
    44
    Occupation:
    IM
    Location:
    USA
    Yeah I got that vurtimonde virus a while ago most annoying thing ever I had to reinstall my windows because of that thing. Whoever made that thing is pretty good haha.
     
  4. obtuse

    obtuse Newbie

    Joined:
    Jan 20, 2009
    Messages:
    27
    Likes Received:
    11
    Occupation:
    depends on what's needed
    I wonder if he was dressed as a meter maid when he was putting them on the cars....... lol :cool: