gif.EXE from "postcard.org"

  • Thread starter Thread starter E. Fridman
  • Start date Start date
E

E. Fridman

Got a spoofed e-mail pretending to be from postcards.org with URL link
redirected to home.ro domain leading to postcard.gif.exe file.

While I'm getting plenty of eBay, PayPal and bank spoofs, this one
masked as a greating card was first for me.
 
y of eBay, PayPal and bank spoofs, this one
masked as a greating card was first for me.
Click to expand...

I got this last week. It's now detected as Postcard.d by F-Prot and
Trojan-Spy.Win32.Postcard.e by KLAB I think. I don't know if anyone
else has detected. The url of the iframe contains exploit iframe bof
which is used to run the malware. On a patched system it just consumes
processor time and ram.
 
You must log in or register to reply here.

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

Ebay and Paypal !! 26
For Sale Wireless PCI-e Card SOLD 6
For Sale FS: Panasonic Lumix FS7 Camera 1
Internet Explorer 7 tools help you recognize phishing scams 0
False positives about URL-Spoof leak 1
For Sale Nvidia MSI GTX660 2Gb Twin Frozr SOLD 6
Where do I Download SafetyBar, a toolbar for Outlook? 4
Prepaid "MoneyPak" Card CAUTION 10

Back
Top