Trojan-Spy.HTML.Fraud.gen Tops Kaspersky’s Malware List for January 2012

Kaspersky the anti-virus solutions company based in Russia has just published its 'January 2012 Spam Report' that alongside the spam statistics delineates the Top Ten List of malware detected during January 2012. In conclusion, however, Kaspersky states that the worst malicious program it saw and assessed was Trojan-Spy.HTML.Fraud.gen.

This malware, a Trojan is chiefly disseminated through e-mail and its share in anti-virus detections was more than 14%, resulting in a 3% rise since December 2011. Characteristically, it utilizes phishing methodology, while emerges like an HTML web-page. Moreover, Trojan-Spy.HTML.Fraud.gen has the accompaniment of a phishing electronic mail consisting of one web-link leading onto a phony website looking exactly like a popular electronic payment system or a bank on which the user must input his password and login information.

Thereafter, ranked No.2 on Kaspersky's Top 10 list and with 6.60% of all detections is Email-Worm.Win32.Mydoom.m. This one abuses e-mail as it arrives through a bogus attachment. Normally, the worm attacks people whose e-mail ids are indexed on the infected computer's address book.

But, following Email-Worm.Win32.Mydoom.m and with 4.61% of all detections is Net-Worm.Win32.Mytob.Fr. Mytob, wary of networks, utilizes known attack-codes so it may copy itself onto the affected networks. The worm effectively alters the host PC's files such that the computer becomes blocked from visiting software security websites. Further, it opens registries to run on the system at every startup for subsequent interaction with a distantly located IRC-server. Overall, the worm's features make it a known security threat.

Next, positioned fourth is Email-Worm.Win32.Bagle.gt at 3.45%. This one poses many hassles for its detection, since it hides on Windows registry or inside the computer's system folder. Email-Worm.Win32.Bagle.gt frequently arrives packaged with non-chargeable applications alternatively with any protected website. Once installed, the worm monitors the computer-operator's online activities for theft of credit card particulars, usernames and passwords, or any of his other money-related detail.

Moreover, after Email-Worm.Win32.Bagle.gt is Trojan-Spy.Win32.SpyEyes.adlc on No.5 with 2.36% of the total detections.

Finally, other e-threats making it to the Kaspersky listing on the 6th, 7th, 8th 9th and 10th positions respectively are Email-Worm.Win32.Netsky.q (2.07%), Trojan-Dropper.Win32.Injector.bvqf (1.53%), Trojan-Dropper.Win32.Injector.byyr (1.42%), Trojan-Dropper.Win32.Injector.bson (1.40%) and Email-Worm-Win32.NetSky.c.

Related article: Trojans to Target VoIP in 2006

» SPAMfighter News - 3/2/2012