New methods attacks for Trojan Kryptik.GIP

Dear All,

Just would like to share again,

Today we caught a new variants which the methods attacks was different like i shared before.

Again we caught a Trojan which is avast not yet detected, but according to virustotal the result is 25/41 (61%) was detected either as Kryptik or Trojan Generic or Oficla. Please see the result link at : http://www.virustotal.com/file-scan/report.html?id=2cf1c168f1d2593cd00f935d14d7a632d955b6e0fd80ce3e89776bb7b9d4627b-1282897162

The email sender is from ip address 180.215.159.169
According to avast utilities search engine this ip address indicated from
Country : India
Region : Haryana
City : Gurgaon
ISP : PDSN8-CHENMAI-MTS-INDIA

Again i uploaded to : http://www.mediafire.com/?hry76ku4ubon6xk

You may try with rename the TXT file and you will found the EXE file inside of the compressed file.

Please take a note, if there any user in this forum not expertise in security matters please don’t try this at home.

cheers,

Thanks for sharing,but if it dont work i will tell you
Thanks again

Hi Superhacker,

No problem.

cheers,

What is the password?!
i wrote virus and it dont work :cry:

for more info about this virus check this out

http://www.microsoft.com/security/portal/Threat/Encyclopedia/Entry.aspx?Name=Trojan%3AWin32%2FOficla.M

Outbreak: Fake Fedex Tracking Number emails carry malware
http://origin-www.sophos.com/blogs/gc/g/2010/08/26/outbreak-fake-fedex-tracking-number-emails-carry-malware/

These are very common not new, they may just vary the hook to catch the fish.

If i remember correct last year was UPS invoice malware mails, so this year may be a FedEx year…and next is DHL >:(

Yes as I said nothing new just recycling the same old social engineering tricks to get mugs to open attachments or click on links. Oh great I’ve got a parcel, I must check the tracking details oh oh, I just got infected.

What mug doesn’t know they aren’t expecting a parcel, etc. and even if they are how does the carrier get their email to tell them. I guess there are plenty of mugs out there or they wouldn’t bother to try and find them.