Dear All,
Just would like to share again,
Today we caught a new variants which the methods attacks was different like i shared before.
Again we caught a Trojan which is avast not yet detected, but according to virustotal the result is 25/41 (61%) was detected either as Kryptik or Trojan Generic or Oficla. Please see the result link at : http://www.virustotal.com/file-scan/report.html?id=2cf1c168f1d2593cd00f935d14d7a632d955b6e0fd80ce3e89776bb7b9d4627b-1282897162
The email sender is from ip address 180.215.159.169
According to avast utilities search engine this ip address indicated from
Country : India
Region : Haryana
City : Gurgaon
ISP : PDSN8-CHENMAI-MTS-INDIA
Again i uploaded to : http://www.mediafire.com/?hry76ku4ubon6xk
You may try with rename the TXT file and you will found the EXE file inside of the compressed file.
Please take a note, if there any user in this forum not expertise in security matters please don’t try this at home.
cheers,