Home / malwarePDF  

Trojan.Downloader.HTML.FM


First posted on 21 November 2011.
Source: BitDefender

Aliases :

Trojan.Downloader.HTML.FM is also known as Trojan.Downloader.HTML.GC, Trojan-Downloader.HTML.IFrame.gc.

Explanation :

This is an a small HTML file, possible sent by spam email. It tricks users into downloading a file called fireworks.exe hidden behind a fake embedded video related to the 4'th of July holiday.

Along with this video in the social engineering process the following phrase is used : "Colorful Independence Day events have already started throughout the country. The largest firework happens on the Fourth of July. Unprecedented sum of money was spent on this fabulous show. If you want to see the best Independence Day firework just click on the video and run it."

It also contains an "iframe" HTML tag redirecting the current page to a php script called "ind.php"

Last update 21 November 2011

 

TOP