Thursday, 23 April 2015

olivia Annual report olivia@cdc.co.uk CDC Consulting

olivia Annual report olivia@cdc.co.uk CDC Consulting email with an attached malware
Annual report.zip






Headers:
From: olivia {olivia@cdc.co.uk}
Subject: Annual report
Message body:
Hi,
Annual report sent to you, maybe yours.

CDC Consulting
Algyr le parc
119 BL de la Bataille de Stalingrad
69100 Villeurbanne
The attached Zip is called:
Annual report.zip
Inside the Zip file is a Windows Executable file (Note: filename is random)
Luk22.exe
Sha256 Hashes:
82d8e65a75e3d955d2fd850f4a7a17b31a4dc74660f664d15f1af42e7b3c2a3a     [1]
Anti virus reports:
VirusTotal Report: [1] (Detection 4/57)
Malwr Report: [1]
Hybrid Analysis Report: [1]

Cheers,
Steve
Sanesecurity.com

7 comments:

Anonymous said...

Just had this too. ISP removed file.

Anonymous said...

Our Trend Micro Scanmail detected and removed it successfully on our hosted exchange platform.

Anonymous said...

McAfee did not detect it... but the email sounded too much like spam, so I did not open it.

Jeffrey Timothy Valerie said...

I just happened to use my phone to see what was inside this email

Jeffrey Timothy Valerie said...

I just happened to use my phone to see what was inside this email

McDimitri Rabbi said...

Our office mail server and the antivirus removed the zip file. Thanks to the powerful filtering.

Anonymous said...

i just got the same thing to my work pc dont open it! its full of spy where.