Fake Microsoft Email Urges Windows Update, Installs Trojan Wupdate-20050401.exe

If you find this useful please share it!


A fake Microsoft email urges users to install the latest Windows update, and even links and takes them to a site which sure seems to be a real Microsoft website. But it isn’t. And the email actually leads to the installation of a trojan horse file. The payload file is named “Wupdate-20050401.exe”, and it will turn your Windows PC into a dedicated spamming machine, at the remote beck and call of the spammer who stands ready and waiting for you to make the click which will install the Wupdate-20050401.exe file on your machine.

And reports indicate that the processes associated with Wupdate-20050401.exe are capable of taking control of 100% of your system’s processes, leaving you and your machine dead in the water.

In addition to the email looking like it comes from Microsoft, and offering a link to a site which looks like a Microsoft site, the timing of this email couldn’t be more perfect, as Microsoft has just announced that they in fact about to release several new patches for Windows. The new legitimate Microsoft Windows patches are due out next Tuesday.

(Article continues below)
Get notified of new Internet Patrol articles for free!
Or Read Internet Patrol Articles Right in Your Inbox!
as Soon as They are Published! Only $1 a Month!

Imagine being able to read full articles right in your email, or on your phone, without ever having to click through to the website unless you want to! Just $1 a month and you can cancel at any time!
Fake Microsoft Email Urges Windows Update, Installs Trojan Wupdate-20050401.exe

Perhaps worst of all, the email is unlikely to be caught by spam filters, further giving it an appearance of legitimacy. “The e-mail won’t be picked up through anti-spyware software because the .exe file does not contain spyware signatures that would be used to identify it as potentially harmful,” said Martino Corbelli from SurfControl.

So what can the Windows user do to protect themselves, especially knowing that there is a legitimate update coming out in a few days? According to Graham Cluley, a senior technology consultant with Internet security firm Sophos, “Microsoft does not issue security warnings this way. They don’t send updates in an HTML format, so don’t follow the links in an e-mail. If you want to see if an update is real, you need to go to the real Microsoft Web site and check there.”

And just so you have it handy, the URL for that real Microsoft website is at http://www.microsoft.com/security/.

No Paywall Here!
The Internet Patrol is and always has been free. We don't hide our articles behind a paywall, or restrict the number of articles you can read in a month if you don't give us money. That said, it does cost us money to run the site, so if something you read here was helpful or useful, won't you consider donating something to help keep the Internet Patrol free? Thank you!

Fake Microsoft Email Urges Windows Update, Installs Trojan Wupdate-20050401.exe

Get notified of new Internet Patrol articles!

If you find this useful please share it!

3 Replies to “Fake Microsoft Email Urges Windows Update, Installs Trojan Wupdate-20050401.exe”

  1. what if I already downloaded this stuff? Do I have to take it back to my computer guy again? Or can I remove this by myself?

Leave a Reply

Your email address will not be published. Required fields are marked *