Calendar Of Updates: Malware SPAM: CNN.com Daily Top 10 - Calendar Of Updates

Jump to content


Page 1 of 1
  • You cannot start a new topic
  • You cannot reply to this topic

Malware SPAM: CNN.com Daily Top 10 get_flash_update.exe

#1 User is offline   Donna 

  • Guinea Pig???
  • PipPipPipPipPipPipPipPipPip
  • View blog
  • Group: Admin - Site
  • Posts: 17,397
  • Joined: 11-October 03


Users Awards

Posted 05 August 2008 - 08:01 AM

Today's malware SPAM has a subject: CNN.com Daily Top 10

The visible links is CNN.com (when one previews the email)
Attached Image: cnnspam.png

If you will download the bad email, the links and story headers are different:
Attached Image: cnnspamou.png

The page will offer get_flash_update.exe which is a malware:

Attached Image: cnnspamsite.png

13 out of 34 scanners will detect the malware if the user mistakenly download or click on the fake link on the email:

Attached Image: cnnspamvt.png

http://www.virustotal.com/analisis/3010eff...a89dd1f2eae18df

ISC have similar alert on the above: http://isc.sans.org/...ml?storyid=4828

#2 User is offline   Celtic Ferret 

  • MVC (Most Vociferous CyberIncompetent)
  • PipPipPipPipPip
  • Group: Member - MVC
  • Posts: 780
  • Joined: 06-October 05

Posted 05 August 2008 - 01:42 PM

Kimberly has posted similar information at Bluetack as well...
http://www.bluetack....showtopic=18956
Her post also links to the Threat Expert associated post:
http://www.threatexpert.com/report.aspx?md...281bcf1158a9879
--CF

#3 User is offline   andrew.anderson 

  • Dies Solis
  • Pip
  • Group: Member - Validated
  • Posts: 1
  • Joined: 05-August 08

Posted 05 August 2008 - 08:26 PM

View PostCeltic Ferret, on Aug 5 2008, 09:42 AM, said:

Kimberly has posted similar information at Bluetack as well...
http://www.bluetack....showtopic=18956
Her post also links to the Threat Expert associated post:
http://www.threatexpert.com/report.aspx?md...281bcf1158a9879
--CF



Thanks, very good info.

One of my computers is infected and I have not had the time to remove the damn thing yet. Posted Image

#4 User is offline   weaselthatbites 

  • Dies Iovis
  • PipPipPipPipPipPip
  • Group: Member - MVC
  • Posts: 1,028
  • Joined: 14-June 06

Posted 05 August 2008 - 09:53 PM

Got two of those sent to me in the last 5 hours...I just hit this is spam in my yahoo account not even bothering to look at it - like I do with all spam. Thanks for the warning though!

#5 Guest_mrclarke_*

  • Group: Non-Member - Guests

Posted 06 August 2008 - 01:36 AM

Donna,
I found that darn thing on my machine yesterday when I scanned with HijackThis,
And I told the program to fix it.

Why , because I didn't recognize it as something I had installed on my machine and all the good things listed were in my ignore list.

Thanks for the post.

Share this topic:


Page 1 of 1
  • You cannot start a new topic
  • You cannot reply to this topic