In their malware analysis report, TrendMicro researcher said they found a new variant that download malicious components from the SourceForge website.
The report says the malicious files were hosted under a SourceForge project called "tradingfiles". The cybercriminal who created the project has also created two other projects that were also used to host the malicious components of Gamarue : ldjfdkladf and stanteam.
Once it infects the victim's machine, the malware allows cybercriminals to control the system and use it to launch attacks on other victims. It is also designed to steal the information.
The malware finds a way into the victim system through infected USB drives or infected webpage that serves exploit kit.