StealZilla actually contains a hardcoded FTP stealer which sends user FTP connection information to the hackers behind the attack. There are a few dead giveaways going on in the background, however. Essentially, StealZilla works because it works – and to the average user nothing appears to be wrong. On top of this, StealZilla is fully functional and the application is only slightly smaller than the 6.8 MB FileZilla.exe.
Filezilla malware download#
To begin, the third-party GUI download sites (right) are almost identical to the official FileZilla one (left). At a glance, StealZilla differs very little from FileZilla.
How StealZilla WorksĪs an open-source application, FileZilla has long been vulnerable to fraudulent replication, however StealZilla is currently the largest and most successful attack to date. If you require assistance with comparison, please don’t hesitate to contact Emsisoft Support. Legitimate InstallerFileZilla_3.7.3_win32-setup.exe: Pictured below is a comparison of the About Windows from FileZilla (left) and StealZilla (right). If you have recently downloaded what you thought was FileZilla, you should investigate the application’s properties. StealZilla is being spread by third-party websites unassociated to FileZilla. Known collectively as StealZilla, these versions contain malware that steals server log-in credentials and sends them to the attacker. On January 28 th, the makers of open source FTP application FileZilla announced that tainted versions of their program are circulating the web.
0 kommentar(er)
