Free Newsletter
Register for our Free Newsletters
Newsletter
Zones
Access Control
LeftNav
Alarms
LeftNav
Biometrics
LeftNav
Detection
LeftNav
Deutsche Zone (German Zone)
LeftNav
Education, Training and Professional Services
LeftNav
Government Programmes
LeftNav
Guarding, Equipment and Enforcement
LeftNav
Industrial Computing Security
LeftNav
IT Security
LeftNav
Physical Security
LeftNav
Surveillance
LeftNav
View All
Other Carouselweb publications
Carousel Web
Defense File
New Materials
Pro Health Zone
Pro Manufacturing Zone
Pro Security Zone
Web Lec
 
ProSecurityZone Sponsor
 
ProSecurityZone Sponsor
 
ProSecurityZone Sponsor
 
ProSecurityZone Sponsor
 
ProSecurityZone Sponsor
 
ProSecurityZone Sponsor
 
 
News

Boonana Gains Higher Profile With New Variant

SecureMac : 05 November, 2010  (Technical Article)
The SecureMac discovered malware, Boonana has been updated with confirmation that the Trojan can infect MAC, Windows and Linux systems
Boonana Gains Higher Profile With New Variant
A new variant of the Boonana malware, first documented and named by SecureMac, has been discovered by ESET. The new variant, trojan.osx.boonana.b, behaves in a very similar manner to the original malware, and is currently being distributed on multiple sites. In addition to the website documented by ESET as currently distributing the malware, SecureMac has identified two more websites that are currently hosting the new malware variant. Rather than the initial site which tricks users into running (and installing) the malware, these servers seem to be hosting update code for the malware. The infected machines contact these servers looking for updates to the malware payload. At the time of analysis (November 2nd, 2010), these servers were live, and distributing malware.

In addition to the malware updates, these servers contain what appear to be keystroke logs from infected machines, including usernames and passwords.

With a quick glance, Boonana may look like a variant of Koobface, which was discovered for Windows back in 2008. However, ESET has also confirmed SecureMac's initial analysis of Boonana as a new unique piece of malware, which does not share a common code-base with the previously discovered Koobface worm.

Additionally, Microsoft identifies the malware as Trojan:Java/Boonana, and rates it as a severe threat for both Mac and Windows.

Another security vendor has verified that the Boonana malware is capable of infecting Linux machines, and will proceed to join a Botnet once installed. The malware also affects Mac OS X and Microsoft Windows.

SecureMac's free Boonana Trojan Removal Tool can detect and remove the threat for Apple's Mac OS X; manual removal instructions are included in the SecureMac writeups. This free Boonana Trojan Horse Removal Tool runs on Mac OS X 10.5 and higher - Download from Users may also run MacScan Security and Privacy software for Mac OS X to detect the Boonana Trojan Horse. MacScan runs on Mac OS X 10.2.4 or higher and includes a free 30-day trial. Existing users are encouraged to download the latest malware definitions before scanning.
Bookmark and Share
 
Home I Editor's Blog I News by Zone I News by Date I News by Category I Special Reports I Directory I Events I Advertise I Submit Your News I About Us I Guides
 
   © 2012 ProSecurityZone.com
Netgains Logo