[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: [ok] [Full-Disclosure] Possible Virus/Trojan

To: "'Todd Towles'" <toddtowles@xxxxxxxxxxxxxxx>, "'Mailing List - Full-Disclosure'" <full-disclosure@xxxxxxxxxxxxxxxx>
Subject: RE: [ok] [Full-Disclosure] Possible Virus/Trojan
From: "Curt Purdy" <purdy@xxxxxxxxxx>
Date: Sun, 25 Jul 2004 14:06:55 -0500

Todd Towles  wrote:
> I received an e-mail today that looked very much like a virus. Here is the
message
>
> Attachment - erupts.avi.exe

>

> Subject - New Southern California wildfire erupts

<snip> .

>

> Either this is a new Trojan that changes it body and subject based on the
current  AP  news or someone used a very lame trick against me. =)



I'm guessing the latter.  Although story scraping would be possible,
intellegent naming of the .exe would not be.  Most likely a friend... or
enemy.



Curt Purdy CISSP, GSEC, MCSE+I, CNE, CCDA
Information Security Engineer
DP Solutions

----------------------------------------

If you spend more on coffee than on IT security, you will be hacked.
What's more, you deserve to be hacked.
-- former White House cybersecurity adviser Richard Clarke

Follow-Ups:
- Re: [ok] [Full-Disclosure] Possible Virus/Trojan
  - From: Andrew Farmer
- RE: [ok] [Full-Disclosure] Possible Virus/Trojan
  - From: Todd Towles
- Re: [ok] [Full-Disclosure] Possible Virus/Trojan
  - From: Valdis . Kletnieks

References:
- [Full-Disclosure] Possible Virus/Trojan
  - From: Todd Towles

Prev by Date: [Full-Disclosure] OpenServer 5.0.7 : Mozilla Multiple issues
Next by Date: Re: [Full-Disclosure] Automated SSH login attempts?
Previous by thread: Re: [Full-Disclosure] Possible Virus/Trojan
Next by thread: Re: [ok] [Full-Disclosure] Possible Virus/Trojan
Index(es):
- Date
- Thread