By GoldSparrow in Spyware

Threat Scorecard

Threat Level: 90 % (High)
Infected Computers: 27
First Seen: October 28, 2015
Last Seen: March 8, 2022
OS(es) Affected: Windows

The Omerstroke malware is a Trojan from the Infostealer family of Trojans that is specialized in collecting passwords for AOL services. Computer users that employ the services of AOL for Windows and are infected with the Omerstroke Trojan might risk losing control of their AOL account and services. The Omerstroke Trojan may collect stored passwords for AOL Mail, AIM messenger, ALTO, AOL toolbar and the central hub for AOL services on Windows. The Omerstroke Trojan may inject threatening code into processes that have access to IP addresses associated with AOL services via the Internet. The Omerstroke malware is similar to other infostealers like Fightpos, Alina and Torpplar, and may run from the Temp folder under the Windows directory. Malware researchers perceive Omerstroke as spyware because it can execute continuous monitoring of services linked to AOL and send data as an email to a predefined email address on the domain. The Omerstroke malware may take screenshots of your opened program windows and send them as POST request via the Internet to a remote server. The Omerstroke malware may edit the Windows Registry values and insert a key that instructs the system to run the Omerstroke payload every time the OS boots up. The Omerstroke malware may cause system errors and prevent users from launching the Windows Task Manager. Malware researchers report that the Omerstroke Trojan is deployed to users via spam emails that may be related to photos and videos on Facebook and news reports. The Omerstroke Trojan may use a DLL named MSVBVM60.DLL to monitor your activity in Google Chrome, Internet Explorer and Mozilla Firefox. Computer users need to install a reputable anti-malware application to purge the Omerstroke Trojan from their systems.


Most Viewed