Microsoft Malware Protection Center

JMH

JMH

Banned
Local time
5:13 AM
Messages
6,448
Bubnix Uses Interesting Obfuscation Scheme

This month, we added the Bubnix family to the latest Malicious Software Removal Tool (MSRT) release.

WinNT/Bubnix is a complicated spam bot which arrives on an affected computer by way of a downloader, TrojanDownloader:Win32/Bubnix.A. TrojanDownloader:Win32/Bubnix.A is itself often downloaded by variants of Win32/Bredolab and Win32/Harnig in the wild.

Generally speaking, it is common for a malicious executable to be transferred in encrypted form by a downloader. In order to increase the apparent legitimacy of the content,
TrojanDownloader:Win32/Bubnix.A takes this a simple step further. Let us take a look at what the Bubnix downloader retrieves below:

bubnix2b.png

Figure 1. Content retrieved by the Bubnix downloader
Click to expand...
Read further -
Microsoft Malware Protection Center
 

My Computer

Computer Manufacturer/Model Number
LAPTOP. HP Pavilion dv7-4010TX .
OS
Win 7 Ultimate 64-bit. SP1.
CPU
Intel i7 -720QM.[1.6GHz Turbo Boost 2.8GHz. 6MB Cache.]
Memory
8 DDR 3 RAM. 1066MHZ
Graphics Card(s)
ATI 1024 MB. DDR3. Radeon HD5650
Monitor(s) Displays
17.3" High Definition Brightview LCD. LED Backlit.
Screen Resolution
1600 x 900.
Hard Drives
640GB
Case
Laptop / notebook.
Mouse
Logitech Anywhere mouse. MX.
Internet Speed
ADSL [ but too slow ]
Good article to read. Been reading quite a lot of articles on there.
 

My Computer

Computer type
PC/Desktop
Computer Manufacturer/Model Number
Custom Built
OS
Windows 8.1 Pro x64
CPU
Intel Core i7 4790k
Motherboard
MSI Z97S Krait Edition
Memory
8GB Corsair Dominator 1600MHz
Graphics Card(s)
MSI TwinFrozr GeForce GTX770
Sound Card
ASUS Xonar DX/XD 7.1
Monitor(s) Displays
Dell 24" S2409W + Dell 20" E207WFP
Screen Resolution
1920x1080 + 1680x1050
Hard Drives
1x 120GB OCZ Agility 3, 1x 750GB Western Digital Caviar Black, 1x 1TB Western Digital Caviar Blue
PSU
Corsair HX850 modular
Case
Fractal Design Define R4
Cooling
Corsair H60 w/ twin Corsair SP120 fans
Keyboard
Logitech G510S Keyboard
Mouse
Logitech G500S Laser Mouse
Internet Speed
40Mbps
Antivirus
Microsoft Security Essentials
Browser
Google Chrome
Other Info
LG Blu-Ray player
Thanks Jan, good info.

Just cleaned up trojans on a friends laptop, always good to get the latest tools.
 

My Computer

Computer type
PC/Desktop
Computer Manufacturer/Model Number
76~2.0
OS
Windows 7 Ult x64 - SP1/ Windows 8 Pro x64
CPU
Intel Core i5-3570K 4.6GHz
Motherboard
Gigabyte GA-Z77X UD3H, f18
Memory
8GB (2X4GB) DDR3 1600 Corsair Vengeance CL8 1.5v
Graphics Card(s)
Sapphire HD 7770 Vapor-X OC 1GB DDR5
Sound Card
Onboard VIA VT2021
Monitor(s) Displays
22" LCD Dell
Screen Resolution
1680x1050
Hard Drives
Samsung 840Pro 128GB SSD,
Seagate Barracuda 500GB SATA2 7200rpm 32MB cache, Seagate Barracuda 1TB SATA2 7200rpm 32MB cache,
PSU
Corsair HX650W
Case
Cooler Master Storm Scout
Cooling
Corsair H80 2x12cm Noctua NF P12 , 2x14cm case fans
Keyboard
Logitech Wave
Mouse
CM Sentinel
Internet Speed
Dismal
Antivirus
Avast
Browser
Opera Next
Other Info
Haswell laptop: HP Envy 17t-j, i7-4700MQ, GeForce 740M 2GB DDR3, 17.3" Full HD 1920x1080, 16GB RAM, Samsung 840 Pro 128GB, 1TB Hitachi 7200 HDD,
Desktop: eSATA ports,
External eSATA Seagate 500GB SATA2 7200rpm,
External WD USB 500GB
You must log in or register to reply here.

Similar threads

CVE-2018-0986 | Microsoft Malware Protection Engine Vulnerability
Replies
2
Views
2K
xips
X
Security Update for Microsoft Malware Protection Engine
Replies
0
Views
2K
Brink
Brink
Microsoft Malware Protection Center
Replies
2
Views
3K
Layback Bear
Layback Bear
Microsoft Malware Protection Center.
Replies
0
Views
3K
JMH
JMH
Solved Microsoft Malware Protection
Replies
1
Views
3K
gregrocker
gregrocker
Back
Top