If you use Steam you may have seen dodgy links being pushed on you. In this case a bad Steam link downloads an SCR file.
.SCR was originally a Screensaver file extension but it has been increasingly used in recent times to hide Malware. Here in Webroot's Threat team we see .SCR Malware all the time.
If anyone wants to peek a little bit into the kinds of things done in Malware analysis there is a good post on Reddit (/r/Malware) from a few days ago where one of these malicious files is deconstructed.
When I read about this I checked this file on our Threat Intelligence Network and it was first seen Aug 16 at 18:14 and thankfully marked bad right away. This is because we had rules in place since Nov 6th 2014 that would have kept our customers covered.
Webroot's Threat Team
Already have an account? Login
Login to the community
No account yet? Create an account
Enter your username or e-mail address. We'll send you an e-mail with instructions to reset your password.
It's nice to know we were one of the first to catch this.