Deconstructing a Pump-and-Dump Spam Trojan - r57shell

 
 
By eweek  |  Posted 2012-05-28 Email Print this article Print
 
 
 
 
 
 
 
 

SecureWorks researcher Joe Stewart reverse-engineers a SpamThru Trojan and finds evidence of a well-heeled spam operation attempting to manipulate penny stocks. These images show the scammers at work.

 
 
 

r57shell is a PHP script that is the handiwork of a Russian hacking group. It is uploaded to a vulnerable Web site and gives the hacker the ability to download and upload files, create backdoor listeners, send e-mail, bounce a connection to another s

Deconstructing a Pump-and-Dump Spam Trojan - r57shell
 
 
 
 
 
 
 
 
 
 
 

Submit a Comment

Loading Comments...
 
Manage your Newsletters: Login   Register My Newsletters























 
 
 
 
 
 
 
 
 
Rocket Fuel