As you can see from the screenshot PSD‘s website www.psd.ro is infected with an exploit bomb followed by a trojan dropper of course. ๐Ÿ™‚

Here is the obfuscated js that was injected several times into the websites index.php(click to enlarge):

A quick search on google revealed:

http://www.symantec.com/connect/blogs/new-obfuscated-scripts-wild-lgpl

Which looks very similar with the malware found on psd.ro.

And that’s about it since i am too tired to look further into it, going to take a nap. ๐Ÿ˜‰

UPDATE: Care for a joke?

The malware on psd.ro seems to have a Pัƒััะบะฐั(Russkaya) touch. ๐Ÿ˜†

Don’t worry, Romanians will get it. (1 & 2)

 

1 Response » to “Official website of Romanian political party PSD infected”

  1. […] website of the Romanian Social Democrat Party was first reported as infected with malicious Javascript on January 8 2010. As of today, February 1, it would appear […]

Leave a Reply