Home page logo

fulldisclosure logo Full Disclosure mailing list archives

RE: Encrypted document
From: Mike Tancsa <mike () sentex net>
Date: Thu, 01 Apr 2004 00:10:05 -0500

I think this is bagle.n no ? Both NAI and f-prot see it as that.


At 10:22 PM 31/03/2004, Alerta Redsegura wrote:
Interesting one.
Kaspersky antivirus says it is "bvblpiewo.exe Suspicion: PSW-Worm".

Supposing the message was automatically generated and not manually crafted, the bmp-contained password is an interesting feature.

Iñigo Koch

De: full-disclosure-admin () lists netsys com [mailto:full-disclosure-admin () lists netsys com]En nombre de ge () egotistical reprehensible net
Enviado el: miércoles 31 de marzo de 2004 22:18
Para: full-disclosure () lists netsys com
Asunto: [Full-Disclosure] Encrypted document
Please, have a look at the attached file.

In order to read the attach you have to use the following password:

Attachment: 6921caf.bmp

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]