DarkAngle Trojan Poses as Panda Cloud Antivirus
The malware logs all commands entered by the user and uploads them to a remote server.
PandaLabs researchers are warning of a new Trojan called DarkAngle, which is disguised as Panda Cloud Antivirus.
"The shady application’s icon almost perfectly replicates the genuine one, but that’s the only similarity between them," writes Softpedia's Eduard Kovacs.
"Once run, DarkAngle logs all commands entered by the user and sends them to an external server," writes PandaLabs technical director Luis Corrons. "In addition, it loads up every time the user reboots the computer, making sure it logs the victim’s data at all times. Furthermore, it uses stealth techniques to bypass antivirus engines."
"This isn’t the first time Panda Cloud AV has been used as a lure," Infosecurity reports. "At the end of last year more traditional rogueware disguised itself as Panda Cloud and performed an automatic scan. Needless to say it found a range of false malware, but demanded it be purchased before the malware could be removed."
"In order to prevent being infected by this and other malware, users should get used to downloading all software from the developers' official [or] Facebook pages, and from reputable download sites," writes Help Net Security's Zeljka Zorz.