Sneaky websites on Google App Engine distribute adware

Share this article:

Be wary. Two legitimate-looking websites on the Google App Engine server are serving up some nasty adware to unsuspecting users.

The Google App Engine is a platform for developing and hosting web applications that also allows customers to register and host websites using the domain appspot.com. 

The first appspot.com website prompts a free Java download for the executable file “Setup.exe” and appears very similar to the download page for Java, Jason Ding, a research scientist at Barracuda Labs, said in a post. When executed, users are told that they do not have the minimum system requirements, but really the adware will be installed. The second appspot.com website prompts the message, “A Media Player Update is Required to View this Content,” and users are once again prompted to download “Setup.exe,” which installs the adware.

The Barracuda Labs anti-virus vendors list the malicious download as "Solimba Adware." The links were reported as still active on Tuesday.

Share this article:
You must be a registered member of SC Magazine to post a comment.

Sign up to our newsletters

More in News

VBA malware on rise, templates make it easier to write code

VBA malware on rise, templates make it easier ...

Researchers at SophosLabs found an uptick in VBA samples in July.

Analysts spot 'Critolock,' ransomware claims to be CryptoLocker

Trend Micro noted several differences between Critolock and CryptoLocker, however.

Citadel used in APT attacks against petrochemical firms

Citadel used in APT attacks against petrochemical firms

In an interesting twist, financial malware Citadel was used to infect firms outside of the finance sector via APT attacks, Trusteer found.