Tuesday, November 17, 2009

Short Way 2 Malware

Short URL service has been exploited for spreading malware for an long time , here is one example

Hi! Please look at this short video. What are they doing?
tube23441.notlong.com/

 

following message is posted to google group , this redirects to

eusebiotanis.150m.com – this is again a freehosting page

<script>
window.location.href=("hxxp://flashtubes.net/xplay.php?id=45230");
</script>



this loads following malware.



<CENTER><A 
      href="hxxp://freefilesarchive.com/flash-HQ-plugin.45230.exe"><IMG 
      onmouseover="window.status = 'Download Streaming Player Media please!';" 
      
      alt="You must Download and Run Video Controller Object to play this video file." 
      src="img/xplayer.gif" border=0></A> 
      </CENTER></DIV>


Short URL – can lead to malware sites, so beware if you click one.


whois information shows



Registrant:

    N/A


    Farah F Jones



    2733 Canis Heights Drive

    City Of Commerce


    California,90040



 




 


 

at

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)

APK spam on Whatsapp Targeting Bank users

  Initial vector:   Whatsapp spam user posing as union bank with logo in user profile shared apk file named as “Union Bank Aadhaar Update....

  • APK spam on Whatsapp Targeting Bank users
      Initial vector:   Whatsapp spam user posing as union bank with logo in user profile shared apk file named as “Union Bank Aadhaar Update....
  • Bit.ly Targeted with bank Phishing
    We have seen security features of bit.ly and its increased use as short url service , now it been exploited to send bank phishing emails  ...
  • Bad Security Policy
    There was posting regarding diclosure of Bank giving out its customers mail address, fueling the Targeted Phisihing attack of its customer. ...