"Fun" with malware

D

Duh_OZ

Received some spam e-mail containing some malware that goes by quite a
few different names.

The attachment was a .hqx that unzipped to filename.zip (bunch of
spaces) .scr.

Windoze had the .zip icon, but I sure wasn't going to double click on
it to see if it would give an 'invalid zip format' or launch the .scr
file.

The e-mail client(Trend Micro) ID'ed it as WORM_GREW.A

Virus total:
===============
AntiVir TR/KillAV.GR
Avast Win32:VB-CD
AVG Worm/Generic.FX
Avira TR/KillAV.GR
BitDefender Win32.Worm.P2P.ABM
CAT-QuickHeal I-Worm.VB.bi
ClamAV Worm.VB-8
DrWeb Win32.HLLM.Generic.391
eTrust-InoculateIT Win32/Cabinet!Worm
eTrust-Vet Win32/Blackmal.F
Ewido Worm.VB.bi
Fortinet W32/Grew.A!wm
F-Prot W32/Kapser.A@mm
Ikarus Email-Worm.Win32.VB.BI
Kaspersky Email-Worm.Win32.VB.bi
McAfee W32/Generic.worm!p2p
NOD32v2 Win32/VB.NEI
Norman W32/Small.KI
Panda W32/Tearec.A.worm
Sophos W32/Nyxem-D
Symantec no virus found
TheHacker no virus found
UNA I-Worm.VB
VBA32 Email-Worm.Win32.VB.bi
==============

I also received e-mail from clueless people that must have CC'ed who
knows who.
============


Nice one!

I told you that I had viruses set aside for people who continue to send
me Spam mail. I only use these viruses against perpetual spammers who
do not heed my warnings.
My filter has just informed me that YOU have tried to infect me with a
virus.
I suggest you explain yourself before something unfortunate happens.
I am a real estate travel writer and if this is the way you treat
people then I feel it could be worth my while to investigate and then
publish.
Do you really want that?

=========

I dont even know who the **** you are, but you can **** Off, actually
you tried to spam me with your bull shit real estate scam!

=============

Dear Dale

Can I asked why you CC'ed this to the PC Broadband Address?

Kind regards

===========

...And can I too ask what the hell is going on ??

Bloody viruses

===========

Well you can ALL **** OFF as far as I am concerned... you people SHIT
ME!

===========
This is the most fun I've had from an e-mail and I didn't even have
anything to do with it LOL.
 
D

Duh_OZ

So much for fun - getting e-mails from all over the world saying to
stop sending e-mails to them. Almost all of them are users using
'reply to' not knowing the reply to address is bogus. So far I've
gotten about 45 of them, all having this in the header:
Received: from mail1.onnetsecure.net ([216.75.195.163]) by
bay0-mc1-f7.bay0.hotmail.com with Microsoft SMTPSVC(6.0.3790.211); Wed,
18 Jan 2006 17:43:57 -0800
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Top