Re: Trojans in MP3s in

Re: Trojans in MP3s in http://www.dslreports.com/forum/r20444492 en Thu, 08 Jan 2009 14:51:51 EDT Thu, 08 Jan 2009 14:51:51 EDT Re: Trojans in MP3s http://www.dslreports.com/forum/remark,20444720 fuziwuzi : They are actually downloading an executable, and when they attempt to "play" their download Windows will prompt them to ask if they really want to run this. That should be their first clue that this isn't their MP3. But then, should they affirm the choice to run it, the trojan even gives them a EULA they must agree to, which should be their second clue that this is not what they wanted. Yet there are idiots who will continue on.

IMHO, they get what they deserve. If they're so freakin' stupid they can't determine an MP3 or MPEG from an executable, at least by the behavior if not from the file extension, they shouldn't be allowed near a computer to begin with.]]> http://www.dslreports.com/forum/remark,20444720 Wed, 07 May 2008 10:17:56 EDT Re: Trojans in MP3s http://www.dslreports.com/forum/remark,20444492 Bender_2k :

said by Jason Levine

:

How do you get a trojan in an MP3 file? I can understand if the file is names SomeSong.mp3.exe and the user has extensions hidden. Then they just see "SomeSong.mp3" but the file itself is an executable. However, when Windows sees a file with a .mp3 extension, it opens a program that has been assigned to open MP3 files (Windows Media Player, WinAMP, QMP, etc). If that player has some sort of bug that allows the MP3 file to run executable content, that's one thing. But an MP3 file that actually contains a trojan? Something doesn't seem right about that.

It looks like the .mp3 file is redirecting users after they run it to download another file called PLAY_MP3.exe and that is what infects the users.

Not overly devious if you ask me and a little common sense can avoid this infection from happening (of course, common sense is in short supply on the web now a days if you ask me...).]]> http://www.dslreports.com/forum/remark,20444492 Wed, 07 May 2008 09:20:07 EDT Trojans in MP3s http://www.dslreports.com/forum/remark,20444400 Jason Levine : How do you get a trojan in an MP3 file? I can understand if the file is names SomeSong.mp3.exe and the user has extensions hidden. Then they just see "SomeSong.mp3" but the file itself is an executable. However, when Windows sees a file with a .mp3 extension, it opens a program that has been assigned to open MP3 files (Windows Media Player, WinAMP, QMP, etc). If that player has some sort of bug that allows the MP3 file to run executable content, that's one thing. But an MP3 file that actually contains a trojan? Something doesn't seem right about that.
--
-Jason Levine
Support a children's charity. Buy a calendar. Shooting For A Cause
Jason's Toolbox | PCQandA.com]]> http://www.dslreports.com/forum/remark,20444400 Wed, 07 May 2008 08:54:33 EDT