Threat Level: green Handler on Duty: Jim Clausing

SANS ISC: 2nd generation WMF 0day Exploit Spammed SANS ISC InfoSec Forums

Watch ISC TV. Great for NOCs, SOCs and Living Rooms:

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
2nd generation WMF 0day Exploit Spammed
According to F-Secure's blog today, the 2nd generation WMF exploit has been spammed and "When the HappyNewYear.jpg hits the hard drive and is accessed (file opened, folder viewed, file indexed by Google Desktop), it executes and downloads a Bifrose backdoor (detected by us as Backdoor.Win32.Bifrose.kt) from www[dot]"

Trend Micro is calling it TROJ_NASCENE.H

160 Posts
ISC Handler

Sign Up for Free or Log In to start participating in the conversation!