Malware, Vulnerability Management

Researchers analyze Bedep malware linked to Flash Player attacks

Share

Saboteurs have continued to target vulnerabilities in Adobe Flash Player in order to spread malware, called “Bedep.” 

And, now, researchers at Trend Micro have provided further insight on the threat, noting that it was featured as the final payload for an exploit leveraging CVE-2015-0313, a zero-day that Adobe plugged on Thursday

Bedep was also linked to Flash Player attacks in late January exploiting CVE-2015-0311, according to a blog post by Trend Micro research engineer Alvin Bacani.

Recent findings by Trend Micro suggest that Bedep's central aim is to enlist infected systems into botnets “for other malicious intentions,” he explained. The malware has caused infected hosts to download additional malware and carry out advertising fraud, for instance.

Bedep's file structure is similar to data stealing malware known as Vawtrak (or Neverquest), and uses “heavy encryption” and Microsoft file properties to skirt detection.

Get daily email updates

SC Media's daily must-read of the most current and pressing daily news

By clicking the Subscribe button below, you agree to SC Media Terms of Use and Privacy Policy.