Today, I got a zip file as an attachment (named as "image014.zip with saying "have you seen the newest iphone? its so amazing check it out") through MSN Messenger from one of my friend's email-ID. There it looks suspicious (later confirmed that he didn't send) to me and further downloaded the file for analysis. After extraction, there was a file named "image016.JPG-www.facebook.com".
Its actually a new variant of MSN worm which is in the wild (more similar to this one) where as 3 AV's detected as per the virustotal result. The detected worm's name looks like that AV's have created a generic (based on the behaviour) signature for it.
Subscribe to:
Post Comments (Atom)
No comments:
Post a Comment