Cross-platform virus spreading as Microsoft expands MAPP program

  • 30 July 2013
  • 0 replies
  • 585 views

Userlevel 7
Badge +54
As security vendors report on a new, nasty cross-platform modification to an old virus, making it able to infect 64-bit and 32-bit files, Microsoft beefs up and expands its MAPP program.

ESET Research warned that an old virus, dubbed Expiro, has learned new cross-platform infection tricks. It is "able to infect 32-bit and 64-bit files (also, 64-bit files can be infected by an infected 32-bit file)," making "the range of potential victims almost universal." Expiro, sometimes also called Xpiro, aims to:

    maximize profit and infects executable files on local, removable and network drives. As for the payload, this malware installs extensions for the Google Chrome and Mozilla Firefox browsers. The malware also steals stored certificates and passwords from Internet Explorer, Microsoft Outlook, and from the FTP client FileZilla. Browser extensions are used to redirect the user to a malicious URL, as well as to hijack confidential information, such as account credentials or information about online banking. The virus disables some services on the compromised computer, including Windows Defender and Security Center (Windows Security Center), and can also terminate processes.

Full Story

0 replies

Be the first to reply!

Reply