Malware writers dupe LiveAndroid download page with new Trojan

SYDNEY & AUCKLAND – June 10, 2010 – BitDefender^® today warned of a new Trojan hosted on a fake webpage that closely imitates the Android LiveCD download page.

Identified by BitDefender as Trojan.Generic.KD.13718, its goal is to exploit the growing popularity of the Android operating system for netbooks and other x86 platforms. The Trojan contains malicious and unwanted software, which it drops and installs onto the infected system.

Frequently, the Trojan installs a backdoor that allows remote, clandestine access to the infected system. This backdoor can then be used by cybercriminals to upload and install additional malicious or potentially unwanted software on the host system.

At the moment the Trojan targets Windows platforms only, whilst a closer look at the fake site and the downloaded files reveals several differences: the most important difference to take note of is that the authentic download should have an .iso image, not a .exe extension. A few other minor visual details can also be seen below:

 In order to stay safe, BitDefender recommends the use of a complete antimalware software solution to protect against current and new threats.