Tuesday, 14 September 2010

birth certificate malware

Here's a birth certificate email:




















Inside the zip... is surprise, surprise... an exe file:






Submitted to VirusTotal:











Added detection as:

Sanesecurity.Rogue.0hr.0914v32427 (rogue.hdb)

Cheers,

Steve
Sanesecurity

Thursday, 26 August 2010

New FedEx malware run... Zbot

Been a while since I've posted to here, so thought it was about time...

A new malware run *just* came in... with a nice jpg and a not-so-nice exe in a zip file...




















Submitted the exe to VirusTotal and the detection, isn't great...






Already being detected as: Sanesecurity.Malware.14529.UNOFFICIAL

Cheers,

Steve
Sanesecurity