Microsoft Malware Protection Center

Posted: 16 Jul 2010

Bubnix Uses Interesting Obfuscation Scheme

This month, we added the Bubnix family to the latest Malicious Software Removal Tool (MSRT) release.

WinNT/Bubnix is a complicated spam bot which arrives on an affected computer by way of a downloader, TrojanDownloader:Win32/Bubnix.A. TrojanDownloader:Win32/Bubnix.A is itself often downloaded by variants of Win32/Bredolab and Win32/Harnig in the wild.

Generally speaking, it is common for a malicious executable to be transferred in encrypted form by a downloader. In order to increase the apparent legitimacy of the content,
TrojanDownloader:Win32/Bubnix.A takes this a simple step further. Let us take a look at what the Bubnix downloader retrieves below:

Figure 1. Content retrieved by the Bubnix downloader

Read further -
Microsoft Malware Protection Center

Posted By: JMH
16 Jul 2010

Everlong

Posts : 3,322
Windows 8.1 Pro x64

New 18 Jul 2010 #1

Good article to read. Been reading quite a lot of articles on there.
My Computer
- My Computer
Computer Type: PC/Desktop
System Manufacturer/Model Number: Custom Built
OS: Windows 8.1 Pro x64
CPU: Intel Core i7 4790k
Motherboard: MSI Z97S Krait Edition
Memory: 8GB Corsair Dominator 1600MHz
Graphics Card: MSI TwinFrozr GeForce GTX770
Sound Card: ASUS Xonar DX/XD 7.1
Monitor(s) Displays: Dell 24" S2409W + Dell 20" E207WFP
Screen Resolution: 1920x1080 + 1680x1050
Keyboard: Logitech G510S Keyboard
Mouse: Logitech G500S Laser Mouse
PSU: Corsair HX850 modular
Case: Fractal Design Define R4
Cooling: Corsair H60 w/ twin Corsair SP120 fans
Hard Drives: 1x 120GB OCZ Agility 3, 1x 750GB Western Digital Caviar Black, 1x 1TB Western Digital Caviar Blue
Internet Speed: 40Mbps
Browser: Google Chrome
Antivirus: Microsoft Security Essentials
Other Info: LG Blu-Ray player
Quote
Dave76

Posts : 12,177
Windows 7 Ult x64 - SP1/ Windows 8 Pro x64

New 19 Jul 2010 #2

Thanks Jan, good info.

Just cleaned up trojans on a friends laptop, always good to get the latest tools.
My Computer
- My Computer
Computer Type: PC/Desktop
System Manufacturer/Model Number: 76~2.0
OS: Windows 7 Ult x64 - SP1/ Windows 8 Pro x64
CPU: Intel Core i5-3570K 4.6GHz
Motherboard: Gigabyte GA-Z77X UD3H, f18
Memory: 8GB (2X4GB) DDR3 1600 Corsair Vengeance CL8 1.5v
Graphics Card: Sapphire HD 7770 Vapor-X OC 1GB DDR5
Sound Card: Onboard VIA VT2021
Monitor(s) Displays: 22" LCD Dell
Screen Resolution: 1680x1050
Keyboard: Logitech Wave
Mouse: CM Sentinel
PSU: Corsair HX650W
Case: Cooler Master Storm Scout
Cooling: Corsair H80 2x12cm Noctua NF P12 , 2x14cm case fans
Hard Drives: Samsung 840Pro 128GB SSD, Seagate Barracuda 500GB SATA2 7200rpm 32MB cache, Seagate Barracuda 1TB SATA2 7200rpm 32MB cache,
Internet Speed: Dismal
Browser: Opera Next
Antivirus: Avast
Other Info: Haswell laptop: HP Envy 17t-j, i7-4700MQ, GeForce 740M 2GB DDR3, 17.3" Full HD 1920x1080, 16GB RAM, Samsung 840 Pro 128GB, 1TB Hitachi 7200 HDD, Desktop: eSATA ports, External eSATA Seagate 500GB SATA2 7200rpm, External WD USB 500GB
Quote

Related Discussions

Our Sites

Site Links

Contact Us
Privacy and Cookies
Do not share my Personal Information.

About Us

Windows 7 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 7" and related materials are trademarks of Microsoft Corp.

© Designer Media Ltd
All times are GMT -5. The time now is 14:03.

Find Us