Ah! What a wonderful day, It is time for dwarfs, tombs, ghosts, sweets,pumpkins and of course malware.
We, at Panda Security, are getting used to be reminded of these special dates, when malware tries to benefit from a social event like this. In this case, a quite infamous malware already known as "Storm worm" aka "Nuwar" aka "Nurech" aka "Alanchum" wishes a good halloween by sending the usual lot of spam.
These messages carries different subjects:
If your in your office, keep the speakers low, lol
Happy Halloween
Dancing Bones
Halloween Fun
Watch him dance
This will make you laugh
You'll laugh your but off
Man this is funny
I am sending this to everyone
Have a Happy Halloween everyone
Party on this Halloween
Nothing is funnier this Halloween
Make him dance
Dancing skeleton
The most amazing dancing skeleton
For people with a sense of humor only
If your in your office, keep the speakers low, lol
To much fun I played with this for hours
Show this to the kids
Send this to your friends
Man this rocks
Inside the mesage we will find a link to a website, and a dosis of social engineering. You know, the usual "This is great", "Great fun","This is cool". We have seen several different messages, with different links to different sites.
If you navigate to the site you will see a…Dancing Skeleton. Funny isn't it? The site provides a download link, just in case you want the skeleton in your desktop.
If you follow the link, you will find a file called "Halloween.exe", guess what? It's MALWARE! If you run it, you will transform your beloved pc into a zombie one. To make your infection more entertaining a song will be playing on the background…[Update "Boom Boom Boom"(Venga Boys)]
Please be careful and Happy halloween!. Thanks to Xabier Francisco for gathering the information.