Blog for hpHosts, and whatever else I feel like writing about ....

Thursday, 6 August 2009

Alert: Malicious Microsoft e-mail using and RapidShare

I've just had the following drop in my inbox, and this is the first time I've seen a RapidShare URL NOT require you wait or enter a CAPTCHA to download the file - it just downloaded straight off the bat (saves me time analyzing it though ;o)).

>> hxxp://

The headers show the e-mail was sent from ( which is on the BAYAN_ZION-AP (BayanTel Broadband) range, which you'll not be surprised to hear, is a residential broadband company.

With the file you're given, being a worm;

VirusTotal - Microsoft_FrameworkUpgrade.exe

No comments: