Malware Campaign: Fake Celebrity Movies

Calendar Of Updates: Malware Campaign: Fake Celebrity Movies - Calendar Of Updates

Page 1 of 1

You cannot start a new topic
You cannot reply to this topic

Malware Campaign: Fake Celebrity Movies xvideo.avi.exe is not ID yet

#1 Donna

Guinea Pig???

Group: Admin - Site
Posts: 17,260
Joined: 11-October 03

Users Awards

Posted 06 August 2008 - 05:40 PM

Today's campaign by malware spammers is to lurk users in visiting a site that will offer a fake video. Fake because there's no video but a malware.

The file name in use this time is xvideo.avi.exe

Examples of the SPAM:

Victoria Becjhem xxx tape! See only on our site!
http://64.177.172.132/movz/mov.php

Christina Aguilera Pu$$y! See movies now!
http://shootinmorocco.com/movz/mov.php

Victoria Becjhem xxx tape! See only on our site!
http://cochinotas.com/movz/mov.php

Attached Image: monthly_08_2008/post-1-1218043847.png

That visible link in the email is redirected to another IP, 89.187.48.54 that will serve the malware: xvideo.avi.exe

WARNING: Do NOT visit any of the above links. It can infect your computers!

No malware scanner has identification at this time. Quickheal and eSafe found the said file as suspicious:

http://www.virustotal.com/analisis/741d8b1...d80d8d4cf8d06d5

#2 Donna

Guinea Pig???

Group: Admin - Site
Posts: 17,260
Joined: 11-October 03

Users Awards

Posted 06 August 2008 - 05:54 PM

I uploaded the file in VirSCAN.org. Panda, Fortinet and again, Quickheal found the file as suspicious only. All others do not have detection yet so be careful. Always delete bad emails and don't be curious by clicking on it unless you know what you are doing.

http://www.virscan.org/report/62b22f22b312...e1fb9b7e57.html