Energizer DUO which has now been discontinued, is a USB battery charger that first made its way into US, European and Latin American markets back in 2007. At the time of sale, the Energizer charger came with a software bundle that offered status information about a battery recharge that may be in progress.
On Friday, the Department of Homeland Security’s US-CERT (United States Computer Emergency Readiness Team) released an advisory for this product as it would appear that the bundled software included malicious code that infected computers with a backdoor Trojan horse.
Once the trojan installed it’s payload (Arucer.dll), the infected file would reside on a Windows computer, listening on TCP port 7777 for instructions. The trojan is self-executing on Windows boot up and has the ability to download and execute files, tweak registry settings, as well as forward stolen information from an infected computer.
The recommended course of action at this time is to uninstall the infected software as well as to delete Arucer.dll. A full virus scan would also be prudent. Energizer has advised that this issue only affects workstations powered by the Windows operating system and that the Mac version appears unaffected.
Though it is not known how this trojan managed to get into the bundled software, Energizer is cooperating with federal law enforcement agencies to investigate further.