Microsoft warns of increase in Adnel and Tarbir Trojan attacks

-

Microsoft has warned its Microsoft Office users of significant rise in malware attacks through macros in Excel and Word programs.

Microsoft says that there is more than a threefold jump in the malware campaigns spreading two different Trojan downloaders. These Trojan downloaders arrive in emails masquerading as orders or invoices.

The malwares are being spread through spam emails containing following subject lines accordingly to Microsoft

ACH Transaction ReportDOC-file for report is ready Invoice as requestedInvoice – P97291Order – Y24383Payment DetailsRemittance Advice from Engineering Solutions LtdYour Automated Clearing House Transaction Has Been Put On
And the attachment containing Adnel and Tarbir campaigns is usually named as following :

20140918_122519.doc
813536MY.xls
ACH Transfer 0084.doc
Automated Clearing House transfer 4995.doc
BAC474047MZ.xls
BILLING DETAILS 4905.doc
CAR014 151239.doc
ID_2542Z.xls
Fuel bill.doc
ORDER DETAILS 9650.doc
Payment Advice 593016.doc
SHIPPING DETAILS 1181.doc
SHIP INVOICE 1677.doc
SHIPPING NO.doc

Microsoft Technet blog says that the two Trojan downloaders.

TrojanDownloader:W97M/Adnel  TrojanDownloader:O97M/Tarbir

Are being spread at a rapid pace through spam emails and phishing campaigns. Worryingly they are targeting both home PC users and enterprise customers and most of the victims are based in United States and United Kingdom.

Comments

Post a Comment

Popular posts from this blog

Windows 10 Key logger DiagTrack -What is does and how to disable it!!

-
Image
DiagTrack -What is does and how to disable it!!  It looks like Microsoft may be collecting a lot more feedback from you behind the scenes. Microsoft collects information about you, your devices, applications and networks, and your use of those devices, applications and networks.  " This isn't the only thing Microsoft is collecting, According to the Privacy Policy, the company is collecting things like text inputted into the operating system, the details of any/all files on your system, voice input and program information. OK so if they're storing typed characters in some fields temporarily to help improve autocorrect, that's great. If they're storing every character I type, including all my passwords and personal information, I just want to know that so I can make an educated decision as to what I should and shouldn't do with the alpha/beta/whatever.   In other words, if they're storing typed characters in some fields temporarily to h
Read more

Chrome Remote Desktop -Curtain Mode Blank Screen (Done the Easy Way)

-
Image
How to enable Curtain Mode (Blank Screen) on remote computer To enable Chrome Remote Desktop to prevent someone physically present at a host machine from seeing what a user is doing while a remote connection is in progress. What this does is block anyone physically presents at the host (other machine) from seeing your actions on the device when you’re remotely connected.  What you can do is copy the txt below ------------------------------------------------------------- Windows Registry Editor Version 5.00 [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\ Google\Chrome] "RemoteAccessHostRequireCurtain"=dword:00000001 ----------------------------------------------------------------------------------- Ok now create a new .txt file on your Desktop and paste the txt into it and save it as ChromeCurtainMode.reg Now all you need to do is double click on the file and run it, You will see a confirmation that its been copied to the registry!
Read more

Phone Numbers for Hardware & Software Vendors ( Time to add some new Contacts )

-
Image
Computer hardware\Software Manufacturers Support\Service website link's and phone numbers 3COM 847-262-0070 3Ware 877-883-9273 Acer 408-533-7700 Actiontec 408-752-7700 Adaptec 408-934-7274 Addonics Tech. 408-433-3855 AG Neovo 866-333-3686 Altec Lansing 800-ALTEC-88 Ambicom, Inc. 408-562-0168 AMD 408-749-3060 AMS 510-353-0211 Antec Corp. 510-770-1200x330 Aopen America 408-232-1216 APC 800-555-2725 Asus 502-995-0883x3 Asus Notebook 888-678-3688 Atech Flash 866-852-8324 ATI 900-733-2841 B BTC 510-657-3956 Belkin 800-223-5546x2263 Brother 800-284-4329 C Cable Unlimited 800-609-7550 CardExpert 510-252-1118 Cooler Master 909-673-9880 Corsair Micro 510-657-8747 Creative Labs 405-742-6655 Cyber Acoustics 360-883-0333 Cyber Cooler 626-820-0999 D-Link Systems 949-788-0805 Edimax 408-988-6092 Epson 562-276-1300 Exabyte Corp. 303-417-7792 Fujitsu 800-626-4686 Gigabyte Int.
Read more