Advanced screen snapshot tool poker8/21/2023 The screenshots are then sent to the attacker’s remote computer.Īfterwards, the screenshots can be retrieved by the cheating attacker. Once executed, the Odlanor malware will be used to create screenshots of the window of the two targeted poker clients – PokerStars or Full Tilt Poker, if the victim is running either of them. In other cases, it was loaded onto the victim’s system through various poker-related programs – poker player databases, poker calculators, and so on – such as Tournament Shark, Poker Calculator Pro, Smart Buddy, Poker Office, and others. This malware masquerades as benign installers for various general purpose programs, such as Daemon Tools or mTorrent. Like a typical computer trojan, users usually get infected with Win32/Spy.Odlanor unknowingly when downloading some other, useful application from sources different than the official websites of the software authors. Let’s explain each of those steps in a bit more detail, as uncovered through our analysis. The attacker seems to operate in a simple manner: After the victim has successfully been infected with the trojan, the perpetrator will attempt to join the table where the victim is playing, thereby having an unfair advantage by being able to see the cards in their hand. Modus operandi: Malware takes screenshots of the infected opponent It specifically targets two of the largest online poker sites: PokerStars and Full Tilt Poker. Today, we’re bringing you news about Win32/Spy.Odlanor, which is used by its malware operator to cheat in online poker by peeking at the cards of infected opponents. The last time I wrote about poker-related malware, it was about PokerAgent, a trojan propagating through Facebook that was used to steal Facebook users’ logon credentials, credit card information and the level of Zynga poker credit. Today, we’re bringing you one of those uncommon threats – a trojan devised to target players of online poker. Every once in a while, though, we stumble upon something that stands out, something that doesn’t fall into the “common” malware categories that we encounter every day – such as ransomware, banking trojans, or targeted attacks (APTs) – just to name a few of those that are currently causing the most problems. Whenever ESET malware researchers discover a new interesting attack, a new piece of malware, or an old threat evolving in an interesting way, we share the news on this blog. Odlanor malware fits that bill – this unique trojan targets players of online poker. Every now and again, ESET comes across an attack that “stands out”.
0 Comments
Leave a Reply.AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |