TSPY_FAREIT.SMC

By Sumo3000 in Trojans | 20 views
Rate it:
1 Star2 Stars3 Stars4 Stars5 Stars (No Ratings Yet)
Loading ... Loading ...
 More... More

TSPY_FAREIT.SMC Description

TSPY_FAREIT.SMC is a dropper Trojan that is distributed in a malicious spam email in order to attack inexperienced computer users. According to ESG security researchers, TSPY_FAREIT.SMC is used to download and execute the executable file for a common Zeus Trojan or Zbot Trojan variant that is typically distributed as a fake Adobe Flash Player updater. TSPY_FAREIT.SMC is distributed by taking advantage of computer users wanting to establish a WebEx conference. The email message that contains TSPY_FAREIT.SMC uses a spoofed email address and various different tactics to convince inexperienced computer users to download the malicious executable file which is named update_flash_player.exe. This same file has been seen repeatedly in other malware attacks and is commonly detected as TSPY_FAREIT.SMC.

A fake WebEx email is sent to the victim. This email contains a fake HTM attachment which leads to a remote server that hosts TSPY_FAREIT.SMC. TSPY_FAREIT.SMC is distributed in fake emails from PayPal. Although the PayPal message claims to contain details on a particular transaction, it actually leads to the malicious website that contains the TSPY_FAREIT.SMC fake Adobe Flash Update. The website containing this malicious executable file spoofs the official Adobe Flash Player website in order to convince computer users to download this fake Adobe Flash Player update. Looking at the website’s URL, you will notice that it is not the real Adobe website’s address. The fact that criminals have managed to spoof this website so closely is impressive in itself due to the fact that the real Adobe Flash web page uses a drop down menu that is difficult to replicate exactly.

TSPY_FAREIT.SMC is used to install a variant of the infamous Zbot banking Trojan. This Trojan is especially designed to rob confidential information from the compromised computer. A TSPY_FAREIT.SMC infection can lead to losing access to your online accounts and losing money in your online bank account. Fortunately, preventing TSPY_FAREIT.SMC attacks is a matter of common sense. If you avoid opening links or email attachments contained in unsolicited email messages (even if it appears to come from a trusted source such as WebEx or PayPal), you can avoid a TSPY_FAREIT.SMC infection altogether.

Type: Trojans

How Can You Detect TSPY_FAREIT.SMC?

Download SpyHunter’s Detection Scanner
to Detect TSPY_FAREIT.SMC.

Can’t install SpyHunter? Click here to view possible causes of installation issues.

TSPY_FAREIT.SMC Removal Details

TSPY_FAREIT.SMC has typically the following processes in memory:

  • update_flash_player.exe

Important Article Disclaimer

ESG Support Center

This entry was last updated on 10/17/12 and posted on 10/17/12. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.
« PC Defender Plus Firewall Alert
TSPY_ZBOT.AMM »

Leave a Comment

Note: Abusive comments are not allowed. Please do not post comments regarding technical support issues. ESG customers that have issues with SpyHunter should open a customer support ticket.

*
To prove you're a person (not a spam script), type the security word shown in the picture. Click on the picture to hear an audio file of the word.
Click to hear an audio file of the anti-spam word

Popular Malware

Popular Trojans

Recent Malware

Home | SpyHunter Risk Assessment Model | Privacy Policy | End User License Agreement | Additional Terms and Conditions
Copyright 2003-2012. Enigma Software Group USA, LLC. All Rights Reserved.