Jumcar. Peruvian navy? Who could be behind it? [Third part]

We know that the family of malware called Trojan.MSIL.Jumcar and Trojan.Win32.Jumcar was developed in Peru with the primary aim of attacking Peruvian users. We also know that Chilean and Peruvian users have latterly been targeted as well. You can read more about this in our preliminary reports:

Jumcar. From Peru with focus on Latin America [First part]

Jumcar. Timeline, crypto, and specific functions [Second part]

During the initial investigation we saw a very striking series of strings from the source code of the first variants: “Armada Peruana“. This is the Peruvian navy.

String “Armada Peruana” observed in decompilation of the Jumcar variant.

Story added 3. June 2013, content source with full text you can find at link above.

Jumcar. Peruvian navy? Who could be behind it? [Third part]

More antivirus and malware news?

Ads

Security news

Malware

Security

IT security

About site

Search Terms Tips

Recent New Tips

Recent Posts