A friend forwarded a link to an excellent article by Michael Kassner on a similar trojan. The article contains a detailed description on how he delved into it, with some interesting links to related articles.
Notable is that this trojan is targeted at stockbrokers with some specific trading firms flagged for interest.
It steals email passwords, does keystroke logging for passwords and credit card numbers, sets itself up so that hackers can gain remote access and watches for connections to some popular trading sites.
No comments:
Post a Comment