Saboteurs have continued to target vulnerabilities in Adobe Flash Player in order to spread malware, called “Bedep.”
And, now, researchers at Trend Micro have provided further insight on the threat, noting that it was featured as the final payload for an exploit leveraging CVE-2015-0313, a zero-day that Adobe plugged on Thursday.
Bedep was also linked to Flash Player attacks in late January exploiting CVE-2015-0311, according to a blog post by Trend Micro research engineer Alvin Bacani.
Recent findings by Trend Micro suggest that Bedep's central aim is to enlist infected systems into botnets “for other malicious intentions,” he explained. The malware has caused infected hosts to download additional malware and carry out advertising fraud, for instance.
Bedep's file structure is similar to data stealing malware known as Vawtrak (or Neverquest), and uses “heavy encryption” and Microsoft file properties to skirt detection.