'Bin Laden Captured' E-mail Downloads Trojan
23rd April, 2004
A new e-mail attack bearing the subject "Osama Bin Laden Captured" downloads a trojan onto the computers of recipients who click on a link promising additional details, according to antivirus vendor Panda Software. The scam spam provides a prime example of social engineering, masquerading as a news bulletin that, if legitimate, would generate click-throughs from a significant number of users. The text of the e-mail:
Subject: "Osama Bin Laden Captured", Message text: "Hey, Just got this from CNN, Osama Bin Laden has been captured! Go to the link below to view the pics and to download the video if you so wish: (Internet address) "Murderous coward he is." God bless America!"The URL takes the user to a page that contains code for a .chm (Compiled HTML Help) file that is auto-executed by Internet Explorer, and in turn downloads an executable trojan. Panda identifies the trojan as small.b, a family of trojans known to leave ports open so the compromised machine can be used for spam and other pass-through activity.
Posted by Rich Miller in Security
Related News
Netcraft Toolbar Day 1 Summary
29 Dec 2004
Security
Development of a Firefox version of the toolbar is underway, and started just before Xmas. We will make it available as soon as we can. Filtering of some suspicious characters was too aggressive and actually blocked some urls on benign sites including...
View full post
Netcraft Toolbar Tutorial
29 Dec 2004
Netcraft Services, Security
The Netcraft Toolbar uses Netcraft's databases of web site information to show you all the attributes of each site you visit on the Web, including the site's hosting location, country, longevity and popularity. The Toolbar is compatible with Microsoft...
View full post
Netcraft Anti-Phishing Toolbar Available for Download
28 Dec 2004
Netcraft Services, Security
The Netcraft Toolbar uses Netcraft's enormous databases of web site information to show you all the attributes of each site you visit on the Web, including the sites' hosting location, country, longevity and popularity. It also mobilizes the Netcraft...
View full post