Trojan.Oficla Proliferating Online
According to a warning released by Doctor Web (an IT security solutions firm in Russia), a Trojan program named 'Trojan.Oficla' is widely spreading across the Internet. The firm detected over 100,000 infections from this Trojan per week.
The firm has also revealed that Trojan.Oficla is capable of dodging different well-known firewalls and anti-viruses with the help of an .exe file called winword.exe. However, this is possible only if the victim's computer has Microsoft Word installed. Subsequently, the Trojan adds the infected PC to a botnet that lets its controllers load other malicious programs on the system.
With the help of Trojan.Oficla, cyber criminals can build botnets validated by numerous modules of botnet administration. Besides, it becomes possible for people owning botnets including computers infected with Trojan.Oficla to wholly regulate their victims PC. They can also install, load and execute nearly any malicious program on those systems.
Presently, Trojan.Oficla (also called myLoader) spreads via spam mails as well as through the abuse of browser vulnerabilities. Speculatively, attackers may exploit distribution channels along with other malware and make more users victims of Trojan.Oficla.
Doctor Web security specialists observe that cyber criminals are already producing different versions of this Trojan on special forums and websites. This very sophisticated crimeware comes at a price between $450 and $700 on the underground marketplace.
Significantly, these prices can be more or less compared with Zeus toolkit's prices that range from $500 to $10,000. The existence of such sophisticated toolkits demonstrates that the online crime business is flourishing.
Doctor Web experts also observe that since Trojan.Oficla is able to hide itself very well, detection of the malware is truly difficult. Actually, it diverts doubt as well as makes the infected computer's analysis complex when genuine AV programs are run for hunting the malevolent Trojan.
To end, Doctor Web specialists give some recommendations following which users can avoid any infection from this malware. These are running auto-updates that will keep big volumes of databases secured and scanning personal computers on a regular basis that will keep any malware like viruses on check.
Related article: Trojans to Target VoIP in 2006
» SPAMfighter News - 07-04-2010