CastleCops® Blogger malware codec

Need help? Click here to register for free! Absolutely zero advertisements on this site!

	Donation/Premium

	Donations. Become Premium Today!

	Security Central

	· Home · PIRT/Fried Phish · MIRT · SIRT · Deutsch · Wiki · Newsletter · O16/ActiveX · CLSID List · Contest2007 · Downloads · Feedback (send) · Forums · HijackThis · Hijacktrend · LSPs · My Downloads · O18 · O20 · O21 · O22 · O23 · O9 · Premium · Private Messages · Proxomitron · Reviews · Search · StartupList · Stories Archive · Submit News · WsIRT · Your Account · Acceptable Use Policy

Forum FAQ

Usergroups

Profile

Select FavForums

Blogger malware codec

All -> FavForums -> Web Malware Links

[del.icio.us!] [digg it!] [reddit!]

View previous topic :: View next topic

Author

Message

IP: 125.24.*.*

Guest

Posted: Thu Dec 27, 2007 2:06 am Post subject: Blogger malware codec

Blogger blog hxxp://videokfds.blogspot.com/2007/12/email-santa.html host link at malware codec downloader The file VideoAccessCodecInstall.exe only Result: 5/32 (15.63%) with Virus Total. I think is very new malware code. Edgar from Bangkok http://edetools.blogspot.com/

MAPKOBKA

Lieutenant

Premium Member

Joined: Jul 04, 2007
Posts: 163

Posted: Thu Dec 27, 2007 3:07 pm Post subject:

Good catch.

Redirects to somemisc. info

Code:

File VideoAccessCodecInstall.exe_ received on 12.27.2007 15:56:28 (CET)
Result: 10/32 (31.25%)
AhnLab-V3 2007.12.27.10 2007.12.26 -
AntiVir 7.6.0.46 2007.12.27 TR/Dldr.Zlob
Authentium 4.93.8 2007.12.27 -
Avast 4.7.1098.0 2007.12.26 -
AVG 7.5.0.516 2007.12.27 Downloader.Zlob
BitDefender 7.2 2007.12.27 -
CAT-QuickHeal 9.00 2007.12.27 TrojanDownloader.Zlob.gen
ClamAV 0.91.2 2007.12.27 Trojan.Dropper-2557
DrWeb 4.44.0.09170 2007.12.27 -
eSafe 7.0.15.0 2007.12.25 -
eTrust-Vet 31.3.5405 2007.12.26 -
Ewido 4.0 2007.12.27 -
FileAdvisor 1 2007.12.27 -
Fortinet 3.14.0.0 2007.12.27 -
F-Prot 4.4.2.54 2007.12.26 -
F-Secure 6.70.13030.0 2007.12.27 W32/Zlob.ARDM
Ikarus T3.1.1.15 2007.12.27 -
Kaspersky 7.0.0.125 2007.12.27 -
McAfee 5193 2007.12.26 -
Microsoft 1.3109 2007.12.27 -
NOD32v2 2750 2007.12.27 -
Norman 5.80.02 2007.12.27 W32/Zlob.ARDM
Panda 9.0.0.4 2007.12.26 -
Prevx1 V2 2007.12.27 -
Rising 20.24.32.00 2007.12.27 -
Sophos 4.24.0 2007.12.27 Troj/Zlobar-Fam
Sunbelt 2.2.907.0 2007.12.27 -
Symantec 10 2007.12.27 -
TheHacker 6.2.9.170 2007.12.26 Trojan/Downloader.gen
VBA32 3.12.2.5 2007.12.26 MalwareScope.Worm.Nuwar-Glowa.1
VirusBuster 4.3.26:9 2007.12.27 -
Webwasher-Gateway 6.6.2 2007.12.27 Trojan.Dldr.Zlob

Please leave siteadvisor ratings, as they unfortunately rate the site green.

http://www.siteadvisor.com/sites/somemisc.info/

_________________
Kaspersky Lab Forum Moderator
KL Cert PSP
Virusinfo.info External Specialist
Alliance of Security Analysis Professionals Member
http://malwarecrawler.com - honeypot@malwarecrawler.com

tetak

MIRT Team Lead
Premium Member

Joined: Jan 19, 2007
Posts: 5878

Posted: Fri Dec 28, 2007 3:38 pm Post subject:

I've downloaded a file from the site, if it's new malware I'll add it to the malware listserv. _________________ Got Windows XP? Help protect your PC from malware with Microsofts anti-spyware program Windows Defender. Download it for free from http://www.microsoft.com/athome/security/spyware/software/default.mspx

	All -> FavForums -> Web Malware Links	All times are GMT
Page 1 of 1

You can post new topics in this forum
You can reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You can attach files in this forum
You cannot download files in this forum


	2002-2008 � Computer Cops LLC dba CastleCops®. All rights reserved. Acceptable Use Policy. Use signifies your agreement. 88ppm 0.200s (0.032s) Making cybercriminals unhappy since 2002*