A booby-trapped Kama Sutra-themed presentation will plant a backdoor when run on Windows machines, security watchers warn.
The supposed PowerPoint presentation file – called Real kamasutra.pps.exe* – supposedly demonstrates different sexual positions. The file does include a NSFW slideshow of 13 different positions, but this is just a decoy.
The real purpose of the distribution is to install a Trojan called AdobeUpdater.exe, and identified by net security firm Sophos as Bckdr-RFM. Compromised machines might be used to send spam or spy on users, among other malicious purposes.
Hackers would be able to update compromised machines with other strains of malware, so all manner of badness might be possible, as explained in a blog entry by Sophos's (appropriately monikered, especially in this case) Naked Security blog here. ®
*The malicious file uses the old double extension ruse, a mainstay of virus writing for many years. While a casual glance might fool users into thinking it is a PowerPoint document, the file is actually an executable.