This is new...Ransom Trojans
One could think the usual trojan would always have the same purpose (z0mbies, credit&other data theft, D0s and so on...), but folks at Sophos have found a new sort of trojans:
one that focuses malicious actions on password-encrypting documents,spreadsheets and database files only to later ask the victim for a 300$ payment to an E-Gold account, in order to receive the password that unlocks the documents.
Quote:
Source: ZDnet
A Trojan that tries to hold users to ransom could be part of a growing trend
Experts warned computer users on Wednesday of a Trojan that could steal their data and try to sell it back to them.
Zippo-A (also known as CryZip) searches for word documents, database files and spreadsheets, and converts them to password encrypted zip files on the user's computer. A file is then created that instructs users to pay $300 (£170) to an e-Gold account to recover their data.
"This is most interesting as an extension of a growing trend of Russian ransomware. This is the first time we've seen this in the UK," said Graham Cluley, senior technology consultant at Sophos.
"Companies who have made regular backups may be able to recover easily, but less diligent businesses may be in a quandary about whether to cough up the cash," Cluley said.
http://news.zdnet.co.uk/internet/sec...9257682,00.htm
Although *.zip password is easy cracking material, if this turns into a new "fashion trend" we can start seeing more of these, probably with harder encryp and bigger $$$ demands.
edit> forgot to say, the pass is: C:\Program Files\Microsoft Visual Studio\VC98 :D