Author Topic: Fake Italian uTorrent Website and Application  (Read 3252 times)

0 Members and 1 Guest are viewing this topic.

July 28, 2008, 05:39:37 am
Read 3252 times

Evilcry

  • Special Access
  • Jr. Member

  • Offline
  • *

  • 39
Hi,

just yesterday I've searched the newest uTorrent client, and the first record appeared in google
by searching "uTorrent" is

Code: [Select]
http://www.utorrent.cc/it/

This is a fake uTorrent Website, cause the real one is

Code: [Select]
http://www.utorrent.com

As you can see the page looks pretty well engineered apart the repetitions of
"Download Here" in the same page.

Let's see the application..

Code: [Select]
http://www.utorrent.cc/it/install_utorrent1.8rc6.upx.exe.exe

Really suspicious

install_utorrent1.8rc6.upx.exe.exe

first of all because uTorrent is a standalone executable and second for the strange final name
upx.exe.exe

By Virus scan with Jotti service we can see that this application is
  Kaspersky Anti-Virus  Found Backdoor.Win32.Small.exw

Regards,
Evilcry

Deep Root Never Freezes - Tolkien

July 28, 2008, 11:01:46 pm
Reply #1

tjs

  • Special Members
  • Sr. Member

  • Offline
  • *

  • 248
It's so lame that they include 'upx' in the name. These malware kiddies are just plain lazy.

July 29, 2008, 08:48:48 am
Reply #2

Evilcry

  • Special Access
  • Jr. Member

  • Offline
  • *

  • 39
Yes, new mass malware are truly stupid and boring, only a few part of these are technically well
coded..
Deep Root Never Freezes - Tolkien

July 30, 2008, 07:46:41 pm
Reply #3

JohnC

  • Special Members
  • Hero Member

  • Offline
  • *

  • 1964