ESET announces new virus Win32/Induc.A

Virus Win32/Induc.A has no destructive payload, but its original and effective mechanism for distribution is very interesting. First, contamination of the environment is Delphi, resulting in the program compiled on the infected computer, also become carriers of the virus code. Since no financial profit program to bring virus writers can not, apparently, it was created out of academic interest or as a prototype for other malicious software.

The programming language Delphi, mainly used in industries using large databases, for example, in banking. In such organizations Win32/Induc.A received the most distribution.

Early detection of threats ESET ThreatSense.Net recorded more than 30 000 unique samples of malicious software Win32/Induc.A within the first 24 hours after the introduction of the virus signature database August 18, 2009.

«Win32/Induc.A able to infect a large number of PC software developers using Delphi. Despite the fact that we've been proactively recognize this software as malware, many software vendors have ignored the warning ESET NOD32 about a new virus, mistakenly taking him for a false positive. As a result, multiple copies of licensed software, created on infected computers that were sold to users »

- commented the head of the virus laboratory ESET Juraj Malcho.

It is noteworthy that the virus is also distributed with a Trojan program Win32/Spy.Banker. Apparently, the creators of Trojans themselves become victims of the same virus, and the program Win32/Spy.Banker was compiled by hackers in Delphi Win32/Induc.A on infected computers.

Source – ESET.

See more:

Antivirus Ratings

Cyberdefender antivirus

Share