.. /.Gadget

Phishing
Double Click
Native
Executable
File Archiver

Author:

mr.d0x

Description:

GADGET files are programs that can run in the Windows sidebar. The GADGET file structure is similar to a ZIP file and can contain files inside. They were introduced in Windows Vista and are natively supported up until Windows 7. Later versions of Windows require a third party software to run.

OS:

Windows

Recommendation:

Block the download and execution of GADGET files. GADGET files should be blocked at the email gateway.

Resources:

https://grahamcluley.com/windows-users-warned-spammed-gadget-malware-attack
https://web.archive.org/web/20140618030215/http://blogs.appriver.com/Blog/bid/102652/windows-gadget-malware

File Samples:

Contributions: