Gameover Trojan
Threat Scorecard
EnigmaSoft Threat Scorecard
EnigmaSoft Threat Scorecards are assessment reports for different malware threats which have been collected and analyzed by our research team. EnigmaSoft Threat Scorecards evaluate and rank threats using several metrics including real-world and potential risk factors, trends, frequency, prevalence, and persistence. EnigmaSoft Threat Scorecards are updated regularly based on our research data and metrics and are useful for a wide range of computer users, from end users seeking solutions to remove malware from their systems to security experts analyzing threats.
EnigmaSoft Threat Scorecards display a variety of useful information, including:
Ranking: The ranking of a particular threat in EnigmaSoft’s Threat Database.
Severity Level: The determined severity level of an object, represented numerically, based on our risk modeling process and research, as explained in our Threat Assessment Criteria.
Infected Computers: The number of confirmed and suspected cases of a particular threat detected on infected computers as reported by SpyHunter.
See also Threat Assessment Criteria.
Threat Level: | 90 % (High) |
Infected Computers: | 1 |
First Seen: | December 6, 2011 |
Last Seen: | October 18, 2019 |
OS(es) Affected: | Windows |
Gameover is a dangerous Trojan that is linked to a phishing scam related to the 2011 holiday season. Online shopping is at an all time high due to the great online deals for Black Friday and the deals leading up to Christmas. ESG security researchers note that the FBI has issued a warning about fresh phishing scams taking advantage of this increased online shopping activity. Specifically, on November 25th, 2011, the FBI warned against the spread of the Gameover Trojan, a variant of the Zeus Trojan.
The Zeus Trojan is one of the most dangerous malware infections of the last years, and is typically used to steal banking information and credit card numbers. Gameover is one of the many variants of this dangerous malware threat. The Gameover Trojan spreads through a fake email from the National Automated Clearing House Association (NACHA), a legitimate organization that is not related to any of these messages. Another organization that has been spoofed by the criminals behind the Gameover Trojan phishing scam include the Electronic Payments Association (EPA) which is in charge of monitoring online payments and money transfers in the United States. The way the Gameover phishing email works is that Gameover will claim that a problem with the victim's online transaction occurred and that it would have to be canceled. Since many computer users have shopped online for their holiday gifts, chances are that they do have an online transaction in process which may tempt them to take this bogus claim seriously.
The Gameover phishing email contains an embedded link claiming to take the user to the details on his transaction. However, clicking on this link will actually download the Gameover Trojan. Once installed on the victim's computer, Gameover has the ability to steal banking account names and passwords. The Gameover Trojan also allows criminals to hijack the victim's computer, allowing them to carry out DDoS (Distributed Denial of Service) attacks on that particular bank's website. This allows criminals to more effectively steal the victim's money, since the bank's focus will be on the attack rather than on any abnormal transaction.
ESG security researchers strongly recommend against clicking on any of these links. Legitimate emails from EPA or NACHA will never prompt you to click on embedded links or download attached files. Basic online safety measures should be followed and, common sense should tell you that these kinds of emails are usually the work of online scam artists.
Submit Comment
Please DO NOT use this comment system for support or billing questions. For SpyHunter technical support requests, please contact our technical support team directly by opening a customer support ticket via your SpyHunter. For billing issues, please refer to our "Billing Questions or Problems?" page. For general inquiries (complaints, legal, press, marketing, copyright), visit our "Inquiries and Feedback" page.