Hopefully I didn't receive any sample of this but thought of sharing information with you. So that you will be aware of what is happening.
According to Websense, inside this zip file there is an executable which is Oficla bot. the detection can be seen here . . .
http://www.virustotal.com/analisis/db641f27e14f54a02229cd3d9da9ca0c844c819c1db00b38005c3154be099965-1273654511
Once this bot installed on your computer, it will change your wallpaper and threaten you that your computer is seriously infected. Which is something like:
After all this drama it downloads and install rouge anti-virus program with the name of "Security Essentials 2010". This rogue AV give you fake warnings like your system is infected with multiple serious vulnerabilities and Trojan, virus, worms etc . . .
This is not for the first time, In the past there were few rouge AV, here is one example of "Antivirus 7"
when there was a news of releasing Windows 7 and another one is with name "PersonalSecurity" which was like . . .
To read more, please refer the following links:
http://community.websense.com/blogs/securitylabs/archive/2010/05/12/new-malspam-please-review-my-cv-thank-you.aspx
hope for the best, and never caught in these scams. i have seen people lost money in the name of buying updates for this rouge AV or in the name of getting latest definitions of clearing off infection shown by rouge AV. Please beware of these scams.
H@v3 @ s@f3 br0w$!n9 . . . .
nj0y !!!
No comments:
Post a Comment