Free Newsletter
Register for our Free Newsletters
Access Control
Deutsche Zone (German Zone)
Education, Training and Professional Services
Government Programmes
Guarding, Equipment and Enforcement
Industrial Computing Security
IT Security
Physical Security
View All
Other Carouselweb publications
Carousel Web
Defense File
New Materials
Pro Health Zone
Pro Manufacturing Zone
Pro Security Zone
Web Lec
ProSecurityZone Sponsor
ProSecurityZone Sponsor
ProSecurityZone Sponsor
ProSecurityZone Sponsor
ProSecurityZone Sponsor
ProSecurityZone Sponsor

Generic Malware Increases During May

Sunbelt Software : 04 June, 2010  (Technical Article)
Sunbelt Software highlights the need for behavioural analysis of malware within the company's top 10 malware threat report for May
Sunbelt Software has announced the Top 10 most prevalent malware threats for the month of May 2010. The report, compiled from monthly scans performed by Sunbelt Software's award-winning anti-malware solution, Vipre Antivirus, and its antispyware tool, CounterSpy, is a service of SunbeltLabs.

Eight of the Top 10 of Sunbelt Software's ThreatNet detections for May were generic or Vipre detections, reflecting the trend toward behaviour-based detections. Eight of the 10 detections for the month had also been among the April Top 10, with Trojan.Win32.Generic!BT continuing in the number-one spot with 27.8 percent of detections, although it is down in prevalence by almost a fifth from April.

INF.Autorun (v) detections grew significantly for the second month in a row, up by more than 55 percent, from 2.34% of overall detections in April to 3.63% in May. This followed an almost 40 percent increase the previous month.

Two detections new to the Top 10 list were FraudTool.Win32.AVSoft (v) at number eight with 1.32 percent and Trojan.Win32.Agent at number nine with 1.28 percent. FraudTool.Win32. AVSoft (v) is a Vipre detection for malware that installs SecurityTool rogue antivirus software and Trojan.Win32.Agent is a Trojan downloader that downloads a wide variety of malcode.

"Whilst there is a continued high volume of Trojan downloaders, the level of generic detections has steadily increased over the past few months, highlighting the importance of behavioural testing via a "sandbox" method to stop malicious applications without individual signature updates. This is a good strategy for stopping zero-day malicious code, or previously unknown malware, which is being generated by the bad guys with more frequency," explains Sunbelt Software Research Centre Manager Tom Kelchner.

The top 10 results represent the number of times a particular malware infection was detected during Vipre and CounterSpy scans that report back to ThreatNet, Sunbelt Software's community of opt-in users. These threats are classified as moderate to severe based on method of installation among other criteria established by SunbeltLabs. The majority of these threats propagate through stealth installations or social engineering.

The top 10 most prevalent malware threats for the month of May were:

1. Trojan.Win32.Generic!BT 27.79%
2. INF.Autorun (v) 3.63%
3. Trojan.Win32.Generic.pak!cobra 2.14%
4. BehavesLike.Win32.Malware (v) 1.95%
5. Trojan-Spy.Win32.Zbot.gen 1.78%
6. Trojan.Win32.Generic!SB.0 1.35%
7. Exploit.PDF-JS.Gen (v) 1.34%
8. FraudTool.Win32.AVSoft (v) 1.32%
9. Trojan.Win32.Agent 1.28%
10. Trojan.Win32.Malware 1.25%
Bookmark and Share
Home I Editor's Blog I News by Zone I News by Date I News by Category I Special Reports I Directory I Events I Advertise I Submit Your News I About Us I Guides
   © 2012
Netgains Logo