Microsoft is warning fans of the game to steer clear of some code generators which promise to deliver the rare armor, but instead infect their computers with malware. “New Halo: Reach gamers turn to code generators to help them get the in-game item that they didn’t earn. Attackers have been quick at noticing this trend and starting to exploit it,” explained Marianne Mallen.
“We came across two samples, detected as PWS:Win32/Fignotok.A, named “Mod V3xD.exe” (Sha1: 1855974d848568968f4c97871a70fa42aff8fbc8) and “Halo Reach Flaming Recon.exe”(Sha1: 775c62aa8530eb616ff5444298d3dc4cff5c823e),” Mallen said.
“both drop a file “haloreachflamingrecon.exe” to generate code for Recon Armor, but instead steals user’s Xbox Live credentials.
Offered as “Halo Reach Generator.exe” (Sha1: 7ab2f6cbacd967aa72360af76e666e3c6cbf56ec) the malware is a worm which harvests user data.
“This worm can spread via removable drives and can steal sensitive information as well,” Mallen added.