The perilous Cimuz.EL Trojan is one of the pernicious codes highlighted in this week’s PandaLabs report along with another Trojan, Gogo.A, and two worms: UsbStorm.A and Nurech.Z. Plus, Microsoft has also published this week 5 latest security fixes.
Cimuz.EL is claimed to have brought about almost 57% of malware finding notifications obtained each hour at PandaLabs. The malicious Cimuz.EL has specially been developed to commit theft of all types of data from targeted PCs, which makes its access to PCs in fragments, that is; first of all, it deploys a part of its code with downloader characteristics.
This downloader, sequentially, makes a download of the part of the code that executes the most menacing actions: pilfering data from the bug-ridden computer (email passwords, IP address, PC location, software deployed, et cetera.) and instilling a DLL in IE to log the user’s Internet behavior and committing theft of more info. Thus, all the data that is stolen by Cimuz.EL is disseminated to its designer often via a certain Web server.
Luis Corrons, technical director of PandaLabs, was quoted as saying,
The characteristics of this malware and the speed with which it is spreading make this one of the most dangerous members of the Cimuz family. Its ability to steal all signs of information, regardless of whether it is useful or not, highlights the interest of cyber-crooks to exploit every infection in order to gather as much data as possible.
