NEWS FROM THE LAB - Friday, January 21, 2011

Malware Referencing Julian Assange Posted by Mikko @ 07:54 GMT

While browsing through incoming malware samples, we noticed this one.

It's an unremarkable malware dropper (md5: 5aac5fc644f5b2797683c2acb337297a).

The somewhat interesting thing about this malware is that it drops a Russian version of Notepad and opens it up for the user to see this message:

Malware referencing Julian Assange - I enjoy crushing bastards (c) Julian Assange

We detect this malware as Trojan-Dropper:W32/Agent.DQJN.