Besides purple roses and strawberry chocolate, this year’s Valentines Day also brought Pink Malware in the form of Nurech worm. Sandra, Willa, Wendy, or Vicky are not your new best friends, instead they are spoofed sender email addresses to trick you guys opening the emails. Cute, but we’re smarter, right? Find out how .
Nurech.B gets in your inbox with subject lines such as: "Happy Valentine's Day," "Valentines Day Dance," "The Valentines Angel.". The email attachment simulates an e-greeting card with file names like "Greeting Postcard.exe," "Greeting card.exe," or "Postcard.exe."
When users click on the attachment, it creates a copy of the worm on the hard drive, and then hides its presence using rootkit-like functions. The worm also disables certain antivirus, antispyware, and security applications installed on the system.
According to Mr. Luis Corrons, Technical Director of PandaLabs, "The objective of course is to trick users into opening the attachment using alluring subject lines related to the romantic holiday. This type of trick is usually quite successful, so we strongly advise users never to open any attachment that they have not requested, regardless of what it seems to contain."
|
