spywarecleaners.info

spywarecleaners.info header image 2
A Selection Of Recent 419 Mails… An Interesting Development…

Sysda Act

June 11th, 2008 · No Comments

Price For Acomplia Drug Information Hoodia Testimonials Price For Penisole Comparison Aldactone Free Samples Where To Get Doxycycline Comparison Discount Soma Proper Dosage Penisole Discount Zithromax Tablets Topamax Dosage Nolvadex Mail Where To Get Avapro Australia Price For Avapro Proper Dosage Price For Levitra United States Taking Flomax Antabuse Generic Diflucan Faq Herbal Stromectol Cheapest Pills Order Phentrimine Honolulu Herbal Propecia Health Forum Lasix Nexium Dosage Where Order Cytotec Swaziland Generic Clomid Augusta Hoodia Description Generic Tramadol Annapolis Where Order Prevacid Mexico Where To Get Nolvadex Equivalent Herbal Diflucan Australia Where To Get Tramadol RX Tramadol Description Where To Get Seroquel Forum Where Order Inderal Effects Discount Lipitor Proper Dosage Norvasc Price For Lotrisone Comparison Generic Acomplia Effects Buy Neurontin Price For Accutane Italy Where To Get Hoodia Canadian Discount Antabuse Horny Goat Weed Generic Nizoral Richmond Levitra Comparison Purchase Levitra Elimite Comparison Price For Nizoral Health Forum Generic Elavil Horny Goat Weed Where Order Cymbalta United Kingdom Where Order Flomax Overnight Delivery Order Erythromycin LittleRock Online Seroquel

Oh hi there.  Apologies for the Whoopee movie reference, but its hard to come up with something catchy.  This latest threat coming through the Facetime Security Labs steals passwords related to chinese sites.  This is not really a threat to most businesses in the US, but judging from the malware trend coming from China and spreading to the rest of the world I’d say its only a matter of time before we start seeing the same method of theft.  The name of this new threat has been named SysdaSysda lies dormant until a certain site is navigated to.  This site is generally related to when a user attempts to change their password for the site.  After that it simply posts the information back to the attacker.  Users should be on the look out for a file called “sysdajchv.dll”.  All it really needs is to hook into iexplore.exe to steal your user credentials. 

crack.PNG

The above illustrates that Sysda is attempting to steal login credentials to Sohu.com.  Whether this is simply a new way to phish for information, or something more sinister along the lines of fraud are still unclear at this point.  I’ll let you know what I found out.

Original post by Chris Mannon and software by Elliott Back

Tags: Research · Adware / Spyware Issues · Spyware Research · Phish