The malicious code, known as both Warezov and Stration, is similar to an earlier version detected in February, but with a new URL (uniform resource locator) and a new version of the malicious code, according to an alert posted Thursday by Websense Inc.
Websense warns Skype users to watch for the message "Check up this," with a URL containing a hyperlink.
The code itself isn't self-propogating but when it runs, the URL is sent to everyone on the user's contact list.
When users click on the link, they are redirected to a site that is hosting a file named file_01.exe. Users are then prompted to run the file and if they do, several other files are downloaded and run. The downloaded files are other versions of the Waresov/Stration malicious code.
Trojan spreading on Skype network
Posted on Saturday, March 24 2007 @ 0:29 CET by Thomas De Maesschalck