(1)
Your rating: Now say why...
Remove the Boonana trojan horse. Free
Boonana Trojan Horse Removal Tool is a free product by SecureMac to remove the Boonana trojan horse, trojan.osx.boonana
The trojan is spreading through social networking sites, including Facebook, disguised as a video. The trojan is currently appearing as a link in messages on social networking sites with the subject "Is this you in this video?"
When a user clicks the infected link, the trojan initially runs as a Java applet, which downloads other files to the computer, including an installer, which launches automatically. When run, the installer modifies system files
The trojan is spreading through social networking sites, including Facebook, disguised as a video. The trojan is currently appearing as a link in messages on social networking sites with the subject "Is this you in this video?"
When a user clicks the infected link, the trojan initially runs as a Java applet, which downloads other files to the computer, including an installer, which launches automatically. When run, the installer modifies system files
What's New
Version 1.1:
- Added Mac OS X 10.4 support.
- Interface changes
Requirements
PPC / Intel, Mac OS X 10.4 or later.
PPC / Intel, Mac OS X 10.4 or later.
Boonana Trojan Hor... User Discussion (Write a Review)
Overall:
(1)
(1)
-
-
-
Boonana Trojan Horse Removal Tool is a free product by SecureMac to remove the Boonana trojan horse, trojan.osx.boonana
The trojan is spreading through social networking sites, including Facebook, disguised as a video. The trojan is currently appearing as a link in messages on social networking sites with the subject "Is this you in this video?"
When a user clicks the infected link, the trojan initially runs as a Java applet, which downloads other files to the computer, including an installer, which launches automatically. When run, the installer modifies system files to bypass the need for passwords, allowing outside access to all files on the system. Additionally, the trojan sets itself to run invisibly in the background at startup, and periodically checks in with command and control servers to report information on the infected system. While running, the trojan horse hijacks user accounts to spread itself further via spam messages. Users have reported the trojan is spreading through e-mail as well as social media sites.
The java component of the trojan horse is cross-platform, and includes other files that affect Mac OS X as well as Microsoft Windows. There have been reports of similar behavior in recent trojan horses targeting Microsoft Windows, but they have not included cross-platform capabilities until now. The trojan attempts to hide its internet communications and actions through obfuscated code spread through multiple files, and will attempt to contact additional command servers if the primary servers are unavailable.
This trojan horse is currently in the wild affecting users of both operating systems. This free trojan horse removal tool will quickly audit the system for the trojan horse and remove the files.
The trojan is spreading through social networking sites, including Facebook, disguised as a video. The trojan is currently appearing as a link in messages on social networking sites with the subject "Is this you in this video?"
When a user clicks the infected link, the trojan initially runs as a Java applet, which downloads other files to the computer, including an installer, which launches automatically. When run, the installer modifies system files to bypass the need for passwords, allowing outside access to all files on the system. Additionally, the trojan sets itself to run invisibly in the background at startup, and periodically checks in with command and control servers to report information on the infected system. While running, the trojan horse hijacks user accounts to spread itself further via spam messages. Users have reported the trojan is spreading through e-mail as well as social media sites.
The java component of the trojan horse is cross-platform, and includes other files that affect Mac OS X as well as Microsoft Windows. There have been reports of similar behavior in recent trojan horses targeting Microsoft Windows, but they have not included cross-platform capabilities until now. The trojan attempts to hide its internet communications and actions through obfuscated code spread through multiple files, and will attempt to contact additional command servers if the primary servers are unavailable.
This trojan horse is currently in the wild affecting users of both operating systems. This free trojan horse removal tool will quickly audit the system for the trojan horse and remove the files.
Copyright © 2012 MacUpdate LLC
- -
-4
-4
Pondurenga Das
Pondurenga@unstress.com
+3
+2
We've updated our advisory page ( http://www.securemac.com/boonana-bulletin.php ) on Boonana Trojan horse and also have listed an analysis page ( http://www.securemac.com/boonana-info.php ) for the boonana trojan horse complete with screenshots.
+3
+29
Perhaps SecureMac can provide some clarification on this?
It is my understanding you are prompted for your password, AFTER which it doesn't need your password to cause more mayhem (kinda obvious!). SecureMac seem to imply it uses Java to bypass the need to ever enter a password.
+1
+29
The Trojan requires authentication and does not bypass Mac OS authentication prompts. Good to know.
-9
Indio rated on 08 Dec 2010