BleepingComputer.com: MS04-023: PGPCoder Trojan - Encrypts & demands $200

Jump to content

Page 1 of 1
  • You cannot start a new topic
  • You cannot reply to this topic

MS04-023: PGPCoder Trojan - Encrypts & demands $200

#1 User is offline   harrywaldron 

  • Security Reporter
  • PipPipPipPip
  • Find Topics
  • Group: Members
  • Posts: 509
  • Joined: 10-April 04
  • Gender:Male
  • Location:Roanoke, Virginia

  Posted 24 May 2005 - 05:20 PM

This is a new malicious attack that's not widespread and provides all the more reason to stay up-to-date with Microsoft Security updates.

MS04-023: PGPCoder Trojan - Encrypts & demands $200 for the key
http://news.zdnet.com/2100-1009_22-5718678.html
http://www.websensesecuritylabs.com/alerts...php?AlertID=194
http://secunia.com/virus_information/18207/pgpcoder/

Researchers at Symantec have seen the malicious program used in the ransom attack. The "Trojan.Pgpcoder" searches a victim's hard disk drive for 15 common file types, including images and Microsoft Office file types. It then encrypts the files, removes the originals and drops a note asking $200 for the encryption key, Friedrichs said.

This memory-resident Trojan arrives via Internet or copied from disks. Upon execution, it encrypts all files on the system having the following extensions:

* ASC
* DB
* DB1
* DB2
* DBF
* DOC
* HTM
* HTML
* JPG
* PGP
* RAR
* RTF
* TXT
* XLS
* ZIP
Microsoft Security Journal

Share this topic:


Page 1 of 1
  • You cannot start a new topic
  • You cannot reply to this topic

1 User(s) are reading this topic
0 members, 1 guests, 0 anonymous users