Friday, 24 April 2015

invoice for car repairs Gruss, Claus Felgen-Garage

invoice for car repairs Gruss, Claus Felgen-Garage with a malware zip attached...

Headers:
From: creative {creative@cix.co.uk}
Subject: invoice for car #35320918
Message body:
hi,
The invoice for car repairs.




Gruss, Claus
__________________________________________

Felgen-Garage
Claus Leykauf
Galgengasse 14
91257 Pegnitz
Germany

tel.: +49 (0) 9241 724785
fax: +49 (0) 9241 724786
mobile: +49 (0) 172 8801123

www.Felgen-Garage.de
Attached to the message is a Zip file:
creative #18994679.zip
Inside the Zip file is a Windows Executable file:
car-repairs.exe
car.exe
kitta234234.exe
Sha256 Hashes:
05a83313d5b30752fc4ba47529700b9b6c50b7ca65d34ca951d73a0b790b1dab [1]
1e4189d58ca73a02d724bbeb093944eda2d4191e3985a574f26c48c9766b418b [2]
80c204ed25055969a14c0af2565c3f5c31ce8421bb5a36014cffb05d07b905ec [3]
Anti virus reports:
VirusTotal Report: [1] (Detection 0/57)
VirusTotal Report: [2] (Detection 0/57)
VirusTotal Report: [3] (Detection 0/57)

Cheers,
Steve
Sanesecurity.com

No comments: