March 16, 2010 | Bratislava | Press Releases

Europe Stricken by a Spam-distributing Trojan

ESET’s in-the-cloud malware collection system <a target="_blank" href=14955</buxus-link>>ThreatSense.Net has picked up an increased activity of a Trojan dubbed <a target="_blank" href=34016,""</buxus-link>>Win32/Lethic.AA. The Trojan is used for spam distribution and can be controlled remotely. To infiltrate a user’s computer, Win32/Lethic.AA probably piggybacks on another malware (malicious software) or is downloaded into the user’s computer by an already present malware. The main purpose of this Trojan is turning the infected computer into a component of a powerful bot for dissemination of unsolicited e-mail. To avoid being detected, its programming code is embedded in the 'explorer.exe' file.

As of mid March, Win32/Lethic.AA is one of the most widespread threats, primarily afflicting users in the Netherlands where it accounts for almost 13% of all detected threats. It has also been detected in Estonia (9%) and Belgium (7%). At the time of this writing, it registered around a 3% share in Denmark, Norway, Sweden, Portugal, and Slovenia. The Trojan also affects computer users in Slovakia, Croatia, Serbia, Greece, Russia and Great Britain, however, the 1 percent share it has gained puts it among the top twenty most widespread threats.

To combat this Trojan, ESET recommends to use updated versions of Internet browsers and security software along with a good deal of caution when downloading files or browsing the Internet.

ThreatSense.Net® collects anonymous statistical information packets about the types of infiltrations detected on the users' workstations. Thanks to this information, the ESET Virus Lab has access to real-time accurate and relevant information about the most wide-spread infiltrations. The infiltrations detected by the heuristic analysis are then tabulated, with the update against malware issued before it can spread or mutate into a different variant.

About ESET

Founded in 1992, ESET is a global provider of security solutions for the home and business segment. The industry leader in proactive malware detection, ESET's NOD32 antivirus holds the world record for the number of Virus Bulletin "VB100 Awards," never to have missed a single “In-the-Wild” worm or virus since the inception of testing in 1998. ESET has headquarters in Bratislava, Slovakia and offices in San Diego, USA; Buenos Aires, Argentina; Prague, Czech Republic, and an extensive partner network in 160 countries. In 2008, ESET has opened a new research center in Krakow, Poland. ESET was named by Deloitte’s Technology Fast 500 as one of the fastest-growing technology companies in the region of Europe, Middle East and Africa.