May 9 2008

Fake MP3s Running Rampant on Limewire, eDonkey

  • Written by soulxtc
  • 4 Comments


McAfee Avert Labs reports of more than 600,000 VirusScan Online users detecting an executable trojan in what it calls the most significant malware outbreak since 2005.

Every file-sharer is hopefully well aware of the dangers of unknown executable files. The importance of this knowledge was proved again recently following a report on the McAfee Avert Labs blog that more than 600,000 McAfee VirusScan Online users detected a Trojan horse masquerading as a media file on a number of P2P and file-sharing networks.

Called the most significant malware outbreak since 2005, some 28% of the 2 million plus PCs scanned in the past 7 days are reported to be infected with the Trojan referred to as Downloader-UA.h.

Apparently what happens is that when a user attempts to play one of the bogus .MP3 or .MPEG files, they’re instead directed to download a file named “PLAY_MP3.exe.”

Once PlayMP3.exe from PlayMP3z.biz is installed, “…you’re left with a fake MP3 file taking up space, a worthless MP3 player, adware that claims not only to not display popups, but also to block them, and more adware that successfully displays popup and popunder ads,” the blog post reads.

2

The following is a list of some of the sample names that have been seen so far:

preview-t-3545425-adult.mpg
preview-t-3545425-changing times earth wind .mp3
preview-t-3545425-girls aloud st trinnians.mp3
preview-t-3545425-heartbroken fast t2 ft jodie.mp3
preview-t-3545425-jij bent zo jeroen van den.mp3
preview-t-3545425-meet bambi in kings harem.mp3
preview-t-3545425-middle eastern chick.mpg
preview-t-3545425-paint me bunmingham.mp3
preview-t-3545425-paralyized by you.mp3
preview-t-3545425-pull over levert.mp3
preview-t-3545425-say it right remix.mp3
preview-t-3545425-st trinnians girls aloud.mp3
preview-t-3545425-theme godfather.mp3
t-3545425-bentley bizzle.mp3
t-3545425-dx vs randi orton 2007.mpg
t-3545425-haloween special.mp3
t-3545425-just got lucky.mp3
t-3545425-lion king portugues.mpg
t-3545425-los padres de ella.mpg
t-3545425-para sayo freestyle.mp3
t-3545425-peanut butter jelly amende.mp3
t-3545425-stare at sun thrice.mp3
t-3545425-suicide bride dana.mp3
t-3545425-wayne and jane.mp3

As usual it’s important to NEVER, EVER install(or execute) unknown files.

[Via Cnet]

Related Posts

  1. Skype teams up with McAfee
  2. Man Arrested for Running Botnet
  3. Ferret out fake BitTorrent trackers with Fake Finder
  4. LimeWire 4.8.0
  5. Trojan Removes P2P Downloads
Zeropaid on Facebook

This website uses IntenseDebate comments, but they are not currently loaded because either your browser doesn't support JavaScript, or they didn't load fast enough.

Comments

  1. Burd

    First of all you can tell by the titles that they are not songs (at least not any that I know of). Secondly if Media Player Winamp or any other player that you already have installed doesn’t play it it’s not an MP3 file. And the MPGS are obviously references to porn: the shit that catches a lot flies.

    Any file that has .exe after it is dangerous if uninvited so don’t EVER click on it. I scan ALL files with my virus program even those that I purposely want to install.

    Hate to say it but anyone who falls for this is REALLY computer illiterate.

  2. soulxtc

    @Burd

    I hear you man but with 600000 people reportedly downloading the thing it’s definitely worth mentioning….

  3. Simpsim

    This is the same sort of malware that finds its way onto certain sites with equally questionable content. I guess these bozos think that because the user is doing something “Wrong” that it’s ok to send them spyware.

  4. clunk1234567

    Most of the victims will be young kids who only see free music. They won’t have a full deck of cards when it comes to computer security all they see is MP3 or MPG. I think we all know who’s spreading this vile filth. Can’t someone send them a letter with a bit of flour inside?

Trackbacks url:

Leave a Comment...

Giganews Newsgroups


1 Star2 Stars3 Stars4 Stars5 Stars Loading ... Loading ...

  • streamOG: SoulXTC, Actually DRM is about content owners doing what they can to enforce their copyrights as much as they can. Fo...
  • soulxtc: No single thing has killed the music industry. DRM is simply part of its pattern of ignoring consumers. Also, DRM fo...
  • streamOG: Jared, Apple only did that so they could extend their customer base out beyond the iPod. It had absolutely zero to do...
  • methylated: Number one tool for searching rare music. Nothing comes close. There are two servers now, so download both of the cli...
  • zeropaid: Sure, except Apple started with DRM on everything, recognized their mistake, removed DRM from audio tracks: http://www....
  • streamOG: Jared, DRM didn't kill the music industry any more than it made the movie/video industry. You can't say con...
  • soulxtc: Exactly. The only way to fight P2P is to inspect each and every data packet. If I have to choose between totalitarianism...
  • Victim of PirateBay: lol PirateBay SUCKS you go to thier website and all of a sudden you are attacked with viruses and spyware. Anyone that l...
  • sdsd