Trojan Performing Click Fraud Disseminated from RapidShare
Researchers at Kaspersky Lab the security company are cautioning that one fresh malicious Trojan performing click fraud is being disseminated through spam mails which are projecting executable file links that are obtainable from the German Swiss-owned website serving one-click pay as well as free file sharing namely RapidShare.
The malicious program, it is reported, represents the family of Trojan-Dropper.Win32.Drooptroop as well as it's doing the rounds from the start of December 2010. There are over 700 variants to this program.
The researchers at Kaspersky have detected this Trojan as Trojan-Dropper.Win32.Drooptroop.jpa and they say that it's utilized for promoting scareware via the exhibition of bogus anti-virus scans on the infected PC. This is performed with the malware compromising an active process on the system namely spoolsv.exe along with monitoring inbound and outbound network traffic inside the Web-browser.
Simultaneously, the Trojan carries out its key activity viz. click fraud. Accordingly, interception of requests related to scripts for click tracking is done as also they're rewritten thus making them appear from certain referrer.
On the whole, considering that the medium of attack, whose hosting is free, is cost-effective, and also the twin techniques the Trojan employs for monetizing, its authors possibly attain high returns from their investment, says Vicente Diaz, security expert at Kaspersky Lab. Softpedia.com published Diaz's statement on December 27, 2010.
However, for staying safe from the above click fraud Trojan, it is advisable that Web-surfers act very carefully while handling e-mails, which carry links, particularly those which lead onto .exe files. Additionally, users are recommended that they should update anti-malware software on their computers for keeping infections at bay.
Sadly, it's because of these types of events that click fraud incidences have massively grown during recent periods, specialists say. For example, vendor for click-fraud identification products and services, Click Forensics highlights in its quarterly report related to general incidences of click fraud that this activity has grown from 18.6% to 22.3% from Q2 2010 to Q3 2010. Also increases in click fraud incidences have been consecutive since April 2009, with these being 12.7% during Q2 2009 and 17.4% during Q1 2010.
Related article: Trojans to Target VoIP in 2006
» SPAMfighter News - 07-01-2011