MicroWorld Technologies recently came up with a warning that a worm known as ‘Win32.Warezov.ms’ is disseminating through spammed emails, camouflaged as system created security warnings from the email service supplier. The smartly created mail is claimed to be an excellent example of smart Social Engineering taken on by today’s malware designers, which is read as follows;
Dear Customer,
Our robot has fixed an abnormal activity from your IP address on sending e-mails. Probably it is connected with the last epidemic of a Worm, which does not have patches at the moment. We recommend you to install a firewall module and it will stop e-mail sending. Otherwise your account will be blocked until you do not eliminate malfunction.
Customer support center robot.
Govind Rammurthy, CEO of MicroWorld Technologies,
Some recipients will definitely be stupefied by the ‘System Generated’ appearance of the mail. Their deluded reflex would tell them that it’s originating from a machine and not created by a human being, which would benumb their ability to smell the rat. That is the very moment the malware writer was hoping for, to slip his malicious file into the victim’s computer.
The Warazov worm - also named Stration - is a .exe file, which seems to be like a valid Windows patch, but actually this is nothing but a Trojan downloader, which is claimed to bring about nasty files into the exploited PC by making contact with a variety of websites using HTTP. Integrating with its own SMTP engine, the malicious Trojan collects email addresses from the victim’s address book and disseminates its copy to all those user ids.
Govind Rammurthy was quoted as saying,
The Warezov family has been a permanent fixture at most Top Ten Virus charts for six months in a row now. The malware creator’s strategy is to release countless variants of the worm with slight modifications in code to confuse AntiVirus engines. We combat this menace by incorporating an advanced Intentional and Behavioral analysis that nails down the worm, what ever may its attire be.
