Discovered: October 16, 2003
Updated: February 13, 2007 12:53:27 PM
Also Known As: PWSteal.Firum
Type: Trojan Horse
Systems Affected: Windows 2000, Windows 3.x, Windows 95, Windows 98, Windows Me, Windows NT, Windows XP
Infostealer.Firum is a Trojan Horse that attempts to collect credit card information as it is entered into Web forms. This Trojan targets Visa, Mastercard, Eurocard, and American Express.
This threat is written in Visual Basic. It may be found as a file named "system32.exe" in the System directory. By default, this is C:\Windows\System (Windows 95/98/Me), C:\Winnt\System32 (Windows NT/2000), or C:\Windows\System32 (Windows XP).
NOTE : Definitions prior to May 10, 2006 may detect this threat as PWSteal.Firum
Protection
-
Initial Rapid Release version October 17, 2003
-
Latest Rapid Release version April 2, 2008 revision 050
-
Initial Daily Certified version October 17, 2003
-
Latest Daily Certified version April 3, 2008 revision 004
-
Initial Weekly Certified release date October 22, 2003
Click for a more detailed description of Rapid Release and Daily Certified virus definitions.
Threat Assessment
Wild
-
Wild Level: Low
-
Number of Infections: 0 - 49
-
Number of Sites: 0 - 2
-
Geographical Distribution: Low
-
Threat Containment: Easy
-
Removal: Easy
Damage
Distribution
Writeup By: Heather Shannon
