14 DAY TRIAL // A more aggressive version of the 2009 Win32.Induc.A has been seen in the wild and, unlike its predecessor, this one's set out to take over all your executable files, spreading malware and opening gateways on the computers it infects.
The new virus is called Win32.Induc.P and Malware City calls it “the most innovative to come out so far this year”.
While the A version was a bit more gentle, only infecting compiled applications and especially targeting Delphi compilers, the P variant attacks not just those, but others such as RAD Studio development suites.
Right from the beginning it tries to compromise all the executable files it finds in its way, spreading like the plague in the Middle Ages, from one computer to the other, using any means it can put its hands on.
The downloader integrated into the core of the malware tries to access external addresses immediately after the infected files are run, downloading even more malicious elements onto the infected system. Bitdefender discovered a keylogger and a backdoor application that allow cybercriminals to completely take over the victim device.
The worst thing about this virus is that it infects your entire system in a Jeefo kind of way, but the damage caused can lead to more disastrous outcomes.
Software developers seem to be the most vulnerable as they might end up with freshly compiled compromised applications that they consider to be clean. Also, while performing application updates, RAD Studio and Delphi users might open malware download portals.
Just like Jeefo, the Win32.Induc.P can also be cleaned with a special removal tool that leaves the infected files unharmed if used properly.
Softpedia comes to the aid of those infected with the virus by offering them the appropriate tool for the job.
The Win32.Induc.P Removal Tool 1.0.0.1 is available for download here.