Encontra-se em: Panda Security > IT Security for Business > downloads > Documentation > Security Products > Product Documentation
ActiveScan. Analise o seu PC gratuitamente
Download Cloud Antivirus Gratis

Enciclopédia de vírus

Benvindo à enciclopédia de vírus da Panda Security.

Sinowal.WTF

Threat LevelLow threatDamageHighDistributionNot widespread
Common name:Sinowal.WTF
Technical name:Trj/Sinowal.WTF
Threat level:Medium
Type:Trojan
Effects:  

It reaches the computer in an email message which seems to have been sent by the MySpace team, indicating users that their password has been modified and that the attached file contains the new one, which is actually the Trojan. It is designed to steal confidential information from the computer and the user.

Affected platforms:

Windows 2003/XP/2000/NT/ME/98/95

First detected on:Jan. 7, 2010
Detection updated on:Feb. 2, 2010
StatisticsNo

Brief Description 

    

Sinowal.WTF is a Trojan which is distributed in email messages that seem to have been sent by the MySpace team, informing users that their password has been modified for security reasons and the new one is attached in a compressed file.

This file does not contain the new password but the Trojan, which is designed to steal information from the computer and the user, by logging the keystrokes typed by the user.

Sinowal.WTF does not spread automatically using its own means. It needs an attacking user's intervention in order to reach the affected computer.

Visible Symptoms 

    

Sinowal.WTF is easy to recognize, as it reaches the computer in an email message that seems to have been sent by the MySpace team and which informs users that for security reasons their password has been changed and that the new password is attached, which actually contains Sinowal.WTF.

The following is an example of the email message in which Sinowal.WTF is being distributed:

MySpace email in which Sinowal.WTF is distributed