Malware distributed via affiliate programs and bundled with other applications is using a devious tactic to fool users into installing it on their systems. Detected this month by malware analysts from Dr.Web, the malware’s name is Ticno (Trojan.Ticno.1537), and despite its shady tactics, this threat comes with top-shelf anti-detection features.
Article Link: http://www.securitynewspaper.com/2016/12/21/malware-disguises-installer-windows-save-dialog-box/