Nymaim – obfuscation chronicles

Discussion in 'malware problems & news' started by SweX, Aug 26, 2013.

Thread Status:
Not open for further replies.
  1. SweX

    SweX Registered Member

    Joined:
    Apr 21, 2007
    Posts:
    6,429
  2. CloneRanger

    CloneRanger Registered Member

    Joined:
    Jan 4, 2006
    Posts:
    4,833
    Yeah nasty piece of work :thumbd: BUT.

    Injects iframe

    1 - If you have iframes disabled that won't happen ;)

    2 - It then want's to download a file. But if you have your browser set up to prompt you for file DL's, you'll be alerted :)

    3 - If you have an AntiExe you would be alerted to that, or ANY other .EXE such as All the other .EXE's in this malware family etc :)

    As usual we only get articles based on people with no prevention/protection in place, & no mention of how to secure their comps to help prevent such infections :thumbd:
     
  3. Rasheed187

    Rasheed187 Registered Member

    Joined:
    Jul 10, 2004
    Posts:
    8,026
    Location:
    The Netherlands
    @ CloneRanger

    I know exactly what you mean, it´s funny that they don´t even mention the HIPS in Eset Smart Security.

    I suppose the HIPS in ESS couldn´t block this malware or something? o_O
     
  4. SweX

    SweX Registered Member

    Joined:
    Apr 21, 2007
    Posts:
    6,429
    The ESET HIPS rarely comes into play as most threats are stopped before they reach the PC by the web protection. And Yes it's detected by ESET, from the blog.....
     
Thread Status:
Not open for further replies.