Flame – The Malware that’s Shaking the Middle East

Flame is very sophisticated modular malware (or espionageware).   All of it’s modules amount to a whopping 21 MB.   Flame was flam malware iranwritten in C++ and Lau (Lau is language you don’t see like…ever).  Flame can also morph it’s behavior to slip past traditional Antivirus (it’s able to detect over 100 antivirus applications), this apparently works very well.

Flame Objectives:

Flame is designed to quietly steal information by:

  • Logging keystrokes
  • Capturing all network traffic on the infected PC
  • Uploading documents already on the PC
  • Enabling built-in microphones and recording the audio (man…I hope I never get infected with this at my house  😳 )
What’s crazy to me is that Flame may have been in the wild (gone undetected) for up to 2 years!!!  That’s some scary stuff.  It really makes you wonder what else is out there that we don’t know about.
Methods of Infection:
  • USB Sticks / Drives
  • Via LAN (spooler exploit)
  • Possibly via hijacked pages
KasperskyLab discovered Flame and now have confirmed over 400 detections of Flame in the Middle east (189 of those in Iran).  No one knows who created Flame, but it’s existence only in the middle East has many people pointing the finger to the US, England and Israel as possible Flame authors.

, , ,