Malware Spam: Fake Trend Micro iClean

Trend Micro’s Blog reports that a fake Trend Micro Virus Clean Tool is spreading in email as attachment.

The email message was fashioned to look like an email message sent by Trend Micro, with the file attachment iClean20.EXE.

But be warned: iClean20.EXE is detected by Trend Micro as TROJ_FAKECLEAN.A. TROJ_FAKECLEAN.A drops two files, one detected as BKDR_POISON.GO and the other, the real iClean tool. Dropping the legitimate tool along with the malware must have been done to fool users that the message was indeed from Trend Micro, and that the tool was the only file downloaded into their systems.

More info and screenshot at http://blog.trendmicro.com/fake-trend-micro-virus-clean-tool-spreads-malware-dirt/

Leave a Reply