New Trojan (Kryptik) at e-mail attachment

Dear All,

Please beware if some of you received any email from unknown person and asking you to save the attachment file.

This morning i got from my friend, that his email attached file in text format which is seem not really dangerous to download and open.
But inside of this file, if we rename to ZIP format then you’ll see inside of ZIP file contains EXE file.

According to virustotal results this file is contains : http://www.virustotal.com/file-scan/report.html?id=00bc2e5dd2e03706d12f8050b68362ae0060df2d88759b5c789bf7bb713d0230-1282687359

If you have an experience in malware world, i upload to mediamfire free for file sharing and the link is : http://www.mediafire.com/?pp3b012ujb2mphr

And i already submitted to virus@avast.com and will see the result. Just want to share that a lot of attackers trying to attacks user with attached their application in to the email and sent as spammer. So please more beware, if you received any unknown sender on your email list.

cheers,

Hi Pondus,

Is there any update from other security vendors about this?

cheers,

It’s getting better.

http://www.virustotal.com/file-scan/report.html?id=b6d6adaa6df6e74ea832362cdbff33cadaeb675d72e90c68935cd3d22eb79502-1282795183

have sendt it to Lavasoft / Superantispyware / Malwarebytes / Norman

Hi Marc57 and Pondus,

Ok nice,
I just trying to re-scan and caught as Win32:Trojan Gen.

I thought after updated, avast will detect automatically but for this file need to do manual scan.

cheers,

I thought after updated, avast will detect automatically but for this file need to do manual scan.
I am not sure if avast scan zip.files when they are downloaded, but it will/should scan it if you open the zip.file

Hi Pondus,

As i knew avast can do scanning event the file compressed in 2 layer as long as not protected by password.

cheers,