Rechercher
Contactez-nous Suivez-nous sur Twitter En francais English Language
 

Freely subscribe to our NEWSLETTER

Newsletter FR

Newsletter EN

Vulnérabilités

Unsubscribe

Websense Threat Type: Malicious Web Site / Malicious Code

February 2009 by Websense

Websense Security Labs™ ThreatSeeker™ Network has spotted an emerging malicious spam lure, mascerading to be from Skype.

The spammed message uses Skype’s logos and themes, posing as a Valentines promotion. With two days to go before Valentine’s day, the fake promotion entices to send a free valentines video message for a loved one. The proposed video link in the message leads to a malicious compressed archive file named valentine.exe located at http://[removed]ftp.com/skype.com/valentine/valentine.exe (SHA1: e5f752badaf0fbc0afcf3081ac10bf781da59de6).

Executing the file will install a version of Skype along with an IRC backdoor file named: spoolsv.exe

Screenshot of a spammed email example: attached
Screenshot of the malicious archive file: attached


See previous articles

    

See next articles


Your podcast Here

New, you can have your Podcast here. Contact us for more information ask:
Marc Brami
Phone: +33 1 40 92 05 55
Mail: ipsimp@free.fr

All new podcasts