Fake MalwareBytes!

Discussion in 'other security issues & news' started by niki, Jan 27, 2013.

Thread Status:
Not open for further replies.
  1. niki

    niki Registered Member

    Joined:
    Jun 9, 2010
    Posts:
    365
    If this forum is not the correct one to report this fake MalwareBytes, then please move it to the proper place.

    http://blog.malwarebytes.org/intelligence/2013/01/cta-malwarebiter-com/#more-579
     
  2. Bodhitree

    Bodhitree Registered Member

    Joined:
    Dec 5, 2012
    Posts:
    567
    Looks like this is classified as a PUP, and most AV's seem to ignore PUPs sadly.. I went ahead and sent the file to a few labs, whether or not they decide to start taking pups seriously remains the question of the day. MBAM already detects it, so if you use that as a secondary - good show.
     
  3. c2d

    c2d Registered Member

    Joined:
    Sep 26, 2007
    Posts:
    572
    Location:
    Bosnia
    Great.Any discounts? :D
     
  4. The Red Moon

    The Red Moon Registered Member

    Joined:
    May 17, 2012
    Posts:
    4,101
    It would seem natural that MBAM is detecting it seeing as this program is imitating it(if thats the correct term).
    In some cases these PUP,s are more dangerous than the usual malware.
     
  5. m00nbl00d

    m00nbl00d Registered Member

    Joined:
    Jan 4, 2009
    Posts:
    6,623
    I couldn't see the MBAM blog article images for some reason, but I checked the Malwarebiter website, and it doesn't look like MBAM website at all.

    I tried to find some screenshots of it, and judging by the looks of it, if they are still current, it doesn't look like MBAM GUI at all either. So, how is it a MBAM fake version? (I'm basing this comment on the screenshots I've seen.)

    Is it just because of the name? o_O

    -edit-

    I remember writing a thread way more than a year ago, where I exposed some rogue antimalware solutions, including MBAM*, and that website was far more convincing that they were the real deal; more than this one. Which is why I'm surprised to see this one being confused with MBAM. But, we never know. :D

    * Which lead to MBAM team putting that website down.
     
  6. wat0114

    wat0114 Registered Member

    Joined:
    Aug 5, 2012
    Posts:
    4,063
    Location:
    Canada
    LOL!

    -http://safeweb.norton.com/report/show?name=malwarebiter.com

    :rolleyes:
     
  7. SweX

    SweX Registered Member

    Joined:
    Apr 21, 2007
    Posts:
    6,429
    Hopefully they will change the status ASAP :D
     
  8. TonyW

    TonyW Registered Member

    Joined:
    Oct 12, 2005
    Posts:
    2,741
    Location:
    UK
  9. TairikuOkami

    TairikuOkami Registered Member

    Joined:
    Oct 10, 2005
    Posts:
    3,418
    Location:
    Slovakia
  10. stackz

    stackz Registered Member

    Joined:
    Dec 27, 2007
    Posts:
    646
    Location:
    Sydney Australia
    I quite like its invisible update feature, where no packets are sent or received in acquiring the latest definitions.
    Maybe legitimate AV/AM companies should look into using this update technology. ;)
     
  11. siljaline

    siljaline Registered Member

    Joined:
    Jun 29, 2003
    Posts:
    6,618
    The -wXX.malwarebiter(dot)com- site is still live. I'm surprised the MBAM folks haven't taken a DMCA takedown against these foistware purveyors yet.
     
  12. The Red Moon

    The Red Moon Registered Member

    Joined:
    May 17, 2012
    Posts:
    4,101
    LOL...:thumb:
     
  13. cheater87

    cheater87 Registered Member

    Joined:
    Apr 22, 2005
    Posts:
    3,289
    Location:
    Pennsylvania.
    Comodo got it when I DLed it in the sandbox to the shared space folder but only detected it when I went to submit it.
     
    Last edited: Jan 28, 2013
Thread Status:
Not open for further replies.
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.