Nymaim – obfuscation chronicles

Discussion in 'malware problems & news' started by SweX, Aug 26, 2013.

Thread Status:
Not open for further replies.
  1. SweX

    SweX Registered Member

    Joined:
    Apr 21, 2007
    Posts:
    6,429
    SweX, Aug 26, 2013
    #1
  2. CloneRanger

    CloneRanger Registered Member

    Joined:
    Jan 4, 2006
    Posts:
    4,978
    Yeah nasty piece of work :thumbd: BUT.

    Injects iframe

    1 - If you have iframes disabled that won't happen ;)

    2 - It then want's to download a file. But if you have your browser set up to prompt you for file DL's, you'll be alerted :)

    3 - If you have an AntiExe you would be alerted to that, or ANY other .EXE such as All the other .EXE's in this malware family etc :)

    As usual we only get articles based on people with no prevention/protection in place, & no mention of how to secure their comps to help prevent such infections :thumbd:
     
    CloneRanger, Aug 26, 2013
    #2
  3. Rasheed187

    Rasheed187 Registered Member

    Joined:
    Jul 10, 2004
    Posts:
    17,559
    Location:
    The Netherlands
    @ CloneRanger

    I know exactly what you mean, it´s funny that they don´t even mention the HIPS in Eset Smart Security.

    I suppose the HIPS in ESS couldn´t block this malware or something? o_O
     
    Rasheed187, Aug 31, 2013
    #3
  4. SweX

    SweX Registered Member

    Joined:
    Apr 21, 2007
    Posts:
    6,429
    The ESET HIPS rarely comes into play as most threats are stopped before they reach the PC by the web protection. And Yes it's detected by ESET, from the blog.....
     
    SweX, Sep 1, 2013
    #4
Thread Status:
Not open for further replies.
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Accept Learn More...