USPS hook instead of the UPS hook

  • Thread starter Thread starter Duh_OZ
  • Start date Start date
From: "Duh_OZ said:
Finally had access to one, passed through the yahoo filter process,
but had to disable Avira AntiVir to have a looksie.

Currently 24/42 on VT reported it as malware. I also uploaded it to
uploadmalware.com before I noticed the same filename was on the
previous upload list.

http://www.virustotal.com/file-scan...64bc588460e304b675c86490b337150a63-1321357772
Click to expand...


Yes, USPS report.exe MD5=99e3f257fc99ec5c3a48289475a7f7c2, was uploaded November 14, 2011,
0605 hrs and then again by you at 0703 hrs Today.
 
Duh_OZ said:
Finally had access to one, passed through the yahoo filter process,
but had to disable Avira AntiVir to have a looksie.

Currently 24/42 on VT reported it as malware. I also uploaded it to
uploadmalware.com before I noticed the same filename was on the
previous upload list.

http://www.virustotal.com/file-scan...64bc588460e304b675c86490b337150a63-1321357772
Click to expand...

Looks like a lot of generic/heuristic detections and just a few
identifications (or misidentifications). Makes me wonder what it
*really* is. :o)
 
From: "FromTheRafters said:
Looks like a lot of generic/heuristic detections and just a few identifications (or
misidentifications). Makes me wonder what it *really* is. :o)
Click to expand...

Fakealert trojan family.
 
Back
Top