USPS hook instead of the UPS hook

D

David H. Lipman

From: "Duh_OZ said:
Finally had access to one, passed through the yahoo filter process,
but had to disable Avira AntiVir to have a looksie.

Currently 24/42 on VT reported it as malware. I also uploaded it to
uploadmalware.com before I noticed the same filename was on the
previous upload list.

http://www.virustotal.com/file-scan...64bc588460e304b675c86490b337150a63-1321357772
Click to expand...


Yes, USPS report.exe MD5=99e3f257fc99ec5c3a48289475a7f7c2, was uploaded November 14, 2011,
0605 hrs and then again by you at 0703 hrs Today.
 
F

FromTheRafters

Duh_OZ said:
Finally had access to one, passed through the yahoo filter process,
but had to disable Avira AntiVir to have a looksie.

Currently 24/42 on VT reported it as malware. I also uploaded it to
uploadmalware.com before I noticed the same filename was on the
previous upload list.

http://www.virustotal.com/file-scan...64bc588460e304b675c86490b337150a63-1321357772
Click to expand...

Looks like a lot of generic/heuristic detections and just a few
identifications (or misidentifications). Makes me wonder what it
*really* is. :blush:)
 
D

David H. Lipman

From: "FromTheRafters said:
Looks like a lot of generic/heuristic detections and just a few identifications (or
misidentifications). Makes me wonder what it *really* is. :blush:)
Click to expand...

Fakealert trojan family.
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

FWT Newsletter - Weekly - September 6, 2004 1

Top