Continued growth of rogue antivirus activity

Sunbelt Software announced the top 10 most prevalent malware threats for the month of April 2010.

The list of detections for April is little changed from March with the exception of a loader for a rogue security product making it into the top 10. Nine detections from March were still on the list in April. FraudTool.Win32.SecurityTool – a loader for rogue security product SecurityTool – was the one new addition, supplanting Virtumonde in the last spot. Bots and Trojans were the most frequent detections.

One detection with a significant change in April was INF.Autorun, which saw its percentage of total detections grow by almost 40 percent, from 1.7% of overall detections in March to 2.34% in April.

Also, Trojan.Win32.Generic!BT, with 33.74 percent share of ThreatNet detections for April (up slightly from 31.07 in March) is indicative of Sunbelt’s continued development of generic detections.

The top 10 most prevalent malware threats for the month of April are:

1. Trojan.Win32.Generic!BT 33.74%
2. Exploit.PDF-JS.Gen 3.41%
3. INF.Autorun 2.34%
4. Trojan-Spy.Win32.Zbot.gen 1.88%
5. Trojan.Win32.Generic!SB.0 1.85%
6. Trojan.Win32.Generic.pak!cobra 1.68%
7. BehavesLike.Win32.Malware 1.31%
8. Trojan.Win32.Malware 1.23%
9. Trojan.ASF.Wimad 1.07%
10. FraudTool.Win32.SecurityTool 1.03%