This morning I ran across an interesting piece of malware. It was a Trojan downloader packaged as a .gadget file. Gadgets are the little things used in the Windows sidebar, like a clock, rss feeds, cpu info, etc. A gadget file is essentially a zip with some special features that allow you to install other gadgets effortlessly. By changing the file extension you can actually extract the actual files being used. In total there were 3 files; main.exe, gadget.html, and gadget.xml. The main.exe is the actual downloader with the others that help run the malicious gadget install. After opening the gadget file and installing it, the malware immediately reaches out to the internet and downloads a file with the .enc extension
more here.........http://blogs.appriver.com/Blog/bid/102652/Windows-Gadget-Malware
more here.........http://blogs.appriver.com/Blog/bid/102652/Windows-Gadget-Malware