Sophos

Download Free virus scan - Download the Sophos Threat Detection Test

« Google-redirected malware spams in new format Adobe Flash SWF exploit causes a stir »

The Zlob Glob

An interesting website was brought to our attention yesterday. The server hosted a php file that can send out over 1500 different versions of the same malware.

Each version was slightly different in an attempt to avoid detection. Most likely, the author had a script that generated each file. This rudimentary attempt at script writing was not quite successful, however. All the files in the Zlob mob were detected by Sophos as Troj/Zlobar-Fam.

In the meantime, we’re keeping an eye on this Zlob blob to see what else the author tries.

Posted on May 28th, 2008 by fnh, SophosLabs CA
Filed under: Malware, Web

Email this story to a friend   Digg   Reddit   Technorati   Slashdot   Facebook   Twitter   NewsVine   MySpace   Google   Live   Mixx   del.icio.us   StumbleUpon  

Download Free virus scan - Download the Sophos Threat Detection Test

Related posts