Wednesday, 29 September 2010

please find enclosed.

Yesterday I received an email apparently coming from LinkedIn:



When we check the headers, the return path is: banquetedfwx14@rentanyapartment.com
I'm pretty sure LinkedIn does not use this email address for their communication ;) .

Enclosed is a file called resume_new.zip (40 KB)
MD5: 7227d2c555262145700be91ae991d91e
VirusTotal result is 25/43:
printable receipt.exe

Conclusion:
LinkedIn will not send you any emails where a "resume" is attached which is in fact an .exe file. Do not reply or open the attachment, simply delete the email.
at
Labels: , , ,

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)

Display Color Calibration tool DCCW and UAC bypasses

In today's post we'll look at yet another way to bypass UAC using the Display Color Calibration tool, hereafter referred to as ...

  • Display Color Calibration tool DCCW and UAC bypasses
    In today's post we'll look at yet another way to bypass UAC using the Display Color Calibration tool, hereafter referred to as ...
  • PHP.net compromised
    Unless you didn't have any internet access today, you must have heard about the compromise of PHP.net today. An excerpt: One of the firs...
  • Notes on Linux/Xor.DDoS
    In this post we'll be focusing on a certain kind of malware: Linux/Xor.DDoS (also known as DDoS.XOR or Xorddos). As usual, we'll br...