Sanesecurity ClamAV blog: zero hour malware, phishing and scams: Google Chrome Security potentially vulnerable and out of date

Tuesday, 3 February 2015

Google Chrome Security potentially vulnerable and out of date Ctb-locker malware

Headers: (example)

Subject: Google Chrome Security
From: Google Security Center {noreply@mail.goog.le.com}

Message body (example)

Your version of Google Chrome is potentially vulnerable and out of date.

Screenshot of Message Body:

The link in the email pretends to download Chrome but it actually download this dangerous executable:

http://assetdigitalmarketing DOT com/chrome DOT exe

Md5 Hashes:

523ec0348d94af33b57b8527bb006b03 [1]

Malware Information:

VirusTotal Report [1] (hits 33/57 Virus Scanners)

Malwr Report [1]

Hybrid Analysis Report [1]

Trojan.Win32.ctblocker.108

Cheers,

Steve
Sanesecurity.com

Sanesecurity ClamAV blog: zero hour malware, phishing and scams