Another trojan hides as image and comes via Skype messages

If you are a regular Skype user you should be aware of this kind of messages:

The new spamming strategy has appeared in the last few days and is being spread via affected Skype accounts.

The provided hyperlinks don’t link to a picture, but to a harmful exe file (skype_02102012_image.exe) appearing as one.

“Running the file will cause it to self delete and the infected PC will begin making DNS requests to a number of URLs, including a .pl, a.com and a .kz - we also saw references to IRC channel names in the network traffic and are investigating further,” says GFI’s Chris Boyd. “It goes without saying that being dropped into a network of compromised machines of any kind won’t do the end-user any favours.”

Fortunately for the users, the Google URL shortening service is able to kill the malicious shortened links in a very quick time. But the danger still lurks around, as constantly setting up fresh links is easy to do.