Tuesday, September 16, 2008

Don't Unzip It

If you happen to get an email claiming to be from UPS, and it has a zip file attached, don't open it!

It's not genuine. In fact, the fake invoice.zip file has some Trojan malware inside.

SANS Internet Storm Center reports that the email heading looks like this:

To: victims@email.address
Subject: Re: missing package
From: John Henry
Reply-To: johnhenry.support@ups.com

Antivirus detection is so far kind of spotty. Here's what it looks like:

AntiVir 7.8.1.28 2008.09.16 TR/Crypt.FKM.Gen
Authentium 5.1.0.4 2008.09.16 W32/Heuristic-VFM!Eldorado
BitDefender 7.2 2008.09.16 MemScan:Trojan.Spy.Delf.NQT
CAT-QuickHeal 9.50 2008.09.16 (Suspicious) - DNAScan
F-Prot 4.4.4.56 2008.09.16 W32/Heuristic-VFM!Eldorado
Ikarus T3.1.1.34.0 2008.09.16 BehavesLike.Win32.Malware

You've been warned.
Posted by at

No comments:

Post a Comment

Please tell me what you think.

Subscribe to: Post Comments (Atom)