Her researchers Seculert warn of the existence and action of a sophisticated version of it Sazoora, a malware designed to subtheft sensitive information and data from the compromised computers.
The action of the trojan dates back to the summer of 2012. In May of 2013, the ESET analyze the threat, in its context analysisof a campaign spyware aimed at users of Slovakia.
Now, the Seculert, has detected it Sazoora.B, an advanced version of it malware.
The new variant is designed so that it is not even perceived by the most effective security tools. Trojan avoids sandbox solutions remaining inactive for 15 minutes after infecting a device.
Once activated, Sazoora.B starts communicating with the C&C Server. In the first phase, the malware confirms that the server is being controlled by attackers, through a specific authentication process.
Over the past month, Seculert has seen more than 23.000 attacks, most of which target users in Australia (25%), Switzerland (22%), Belgium (9%) and the United States (8% .
