Bienvenue sur l’Encyclopédie des Virus de Panda Security.
It reaches the computer in an email message which seems to have been sent by the MySpace team, indicating users that their password has been modified and that the attached file contains the new one, which is actually the Trojan. It is designed to steal confidential information from the computer and the user.
Sinowal.WTF is a Trojan which is distributed in email messages that seem to have been sent by the MySpace team, informing users that their password has been modified for security reasons and the new one is attached in a compressed file.
This file does not contain the new password but the Trojan, which is designed to steal information from the computer and the user, by logging the keystrokes typed by the user.
Sinowal.WTF does not spread automatically using its own means. It needs an attacking user's intervention in order to reach the affected computer.
Sinowal.WTF is easy to recognize, as it reaches the computer in an email message that seems to have been sent by the MySpace team and which informs users that for security reasons their password has been changed and that the new password is attached, which actually contains Sinowal.WTF.
The following is an example of the email message in which Sinowal.WTF is being distributed: