728x90
반응형
이번에는 미국 유명 방송국 msnbc.com으로 위장하여 보내진 스팸 이메일이 발견되었습니다.
마이크로소프트사가 AOL 업체를 인수하였다는 뉴스 제목으로 위장하여 이메일을 수신한 사람들이 클릭하게 만드는 사회공학적 방식을 이용하고 있습니다.
해당 이메일에서 제공하는 몇 가지 링크 중 맨 상단의 링크를 클릭할 경우 실제 이메일에 나와 있는 링크가 아닌 다음과 같은 링크로 연결됩니다.
[up.html]
Antivirus Version Last Update Result
AhnLab-V3 2008.8.13.0 2008.08.13 -
AntiVir 7.8.1.19 2008.08.13 HEUR/HTML.Malware
Authentium 5.1.0.4 2008.08.13 JS/Agent.FA
Avast 4.8.1195.0 2008.08.13 -
AVG 8.0.0.161 2008.08.13 Downloader.Zlob.HTML
BitDefender 7.2 2008.08.13 Trojan.HTML.Zlob.Y
CAT-QuickHeal 9.50 2008.08.13 HTM/Zlob.GEN.2
ClamAV 0.93.1 2008.08.13 -
DrWeb 4.44.0.09170 2008.08.13 -
eSafe 7.0.17.0 2008.08.12 JS.Agent.ib.
eTrust-Vet 31.6.6030 2008.08.13 -
Ewido 4.0 2008.08.13 -
F-Prot 4.4.4.56 2008.08.13 JS/Agent.FA
F-Secure 7.60.13501.0 2008.08.13 -
Fortinet 3.14.0.0 2008.08.13 JS/Zlob!tr.dldr
GData 2.0.7306.1023 2008.08.13 -
Ikarus T3.1.1.34.0 2008.08.13 Trojan.HTML.Zlob.Y
K7AntiVirus 7.10.413 2008.08.13 -
Kaspersky 7.0.0.125 2008.08.13 -
McAfee 5359 2008.08.12 -
Microsoft 1.3807 2008.08.13 -
NOD32v2 3352 2008.08.13 -
Norman 5.80.02 2008.08.13 -
Panda 9.0.0.4 2008.08.13 -
PCTools 4.4.2.0 2008.08.13 -
Rising 20.57.22.00 2008.08.13 -
Sophos 4.32.0 2008.08.13 -
Sunbelt 3.1.1542.1 2008.08.13 -
Symantec 10 2008.08.13 -
TheHacker 6.3.0.3.046 2008.08.13 -
TrendMicro 8.700.0.1004 2008.08.13 JS_AGENT.AMQS
VBA32 3.12.8.3 2008.08.13 -
ViRobot 2008.8.13.1335 2008.08.13 -
VirusBuster 4.5.11.0 2008.08.12 -
Webwasher-Gateway 6.6.2 2008.08.13 Heuristic.HTML.Malware
Additional information
File size: 20881 bytes
MD5...: f610dd6607641f7de0a0e504147534a1
SHA1..: 27c52ffd95c799a787c081f3a55cbf61a4b9e528
[adobe_flash.exe]
AhnLab-V3 2008.8.13.0 2008.08.13 -
AntiVir 7.8.1.19 2008.08.13 HEUR/HTML.Malware
Authentium 5.1.0.4 2008.08.13 JS/Agent.FA
Avast 4.8.1195.0 2008.08.13 -
AVG 8.0.0.161 2008.08.13 Downloader.Zlob.HTML
BitDefender 7.2 2008.08.13 Trojan.HTML.Zlob.Y
CAT-QuickHeal 9.50 2008.08.13 HTM/Zlob.GEN.2
ClamAV 0.93.1 2008.08.13 -
DrWeb 4.44.0.09170 2008.08.13 -
eSafe 7.0.17.0 2008.08.12 JS.Agent.ib.
eTrust-Vet 31.6.6030 2008.08.13 -
Ewido 4.0 2008.08.13 -
F-Prot 4.4.4.56 2008.08.13 JS/Agent.FA
F-Secure 7.60.13501.0 2008.08.13 -
Fortinet 3.14.0.0 2008.08.13 JS/Zlob!tr.dldr
GData 2.0.7306.1023 2008.08.13 -
Ikarus T3.1.1.34.0 2008.08.13 Trojan.HTML.Zlob.Y
K7AntiVirus 7.10.413 2008.08.13 -
Kaspersky 7.0.0.125 2008.08.13 -
McAfee 5359 2008.08.12 -
Microsoft 1.3807 2008.08.13 -
NOD32v2 3352 2008.08.13 -
Norman 5.80.02 2008.08.13 -
Panda 9.0.0.4 2008.08.13 -
PCTools 4.4.2.0 2008.08.13 -
Rising 20.57.22.00 2008.08.13 -
Sophos 4.32.0 2008.08.13 -
Sunbelt 3.1.1542.1 2008.08.13 -
Symantec 10 2008.08.13 -
TheHacker 6.3.0.3.046 2008.08.13 -
TrendMicro 8.700.0.1004 2008.08.13 JS_AGENT.AMQS
VBA32 3.12.8.3 2008.08.13 -
ViRobot 2008.8.13.1335 2008.08.13 -
VirusBuster 4.5.11.0 2008.08.12 -
Webwasher-Gateway 6.6.2 2008.08.13 Heuristic.HTML.Malware
Additional information
File size: 20881 bytes
MD5...: f610dd6607641f7de0a0e504147534a1
SHA1..: 27c52ffd95c799a787c081f3a55cbf61a4b9e528
[adobe_flash.exe]
Antivirus Version Last Update Result
AhnLab-V3 2008.8.13.0 2008.08.13 Win-Trojan/Exchanger.74752.E
AntiVir 7.8.1.19 2008.08.13 TR/Dldr.Exchanger.DW
Authentium 5.1.0.4 2008.08.13 -
Avast 4.8.1195.0 2008.08.13 Win32:Trojan-gen {Other}
AVG 8.0.0.161 2008.08.13 Downloader.Agent.AJFH
BitDefender 7.2 2008.08.13 Trojan.Downloader.Exchanger.Gen.2
CAT-QuickHeal 9.50 2008.08.13 (Suspicious) - DNAScan
ClamAV 0.93.1 2008.08.13 Trojan.Agent-40781
DrWeb 4.44.0.09170 2008.08.13 Trojan.DownLoad.3248
eSafe 7.0.17.0 2008.08.12 Suspicious File
eTrust-Vet 31.6.6030 2008.08.13 Win32/Collet.DS
Ewido 4.0 2008.08.13 -
F-Prot 4.4.4.56 2008.08.13 -
F-Secure 7.60.13501.0 2008.08.13 Trojan-Downloader.Win32.Exchanger.mn
Fortinet 3.14.0.0 2008.08.13 W32/PolyExchanger.A!tr
GData 2.0.7306.1023 2008.08.13 Trojan-Downloader.Win32.Exchanger.mn
Ikarus T3.1.1.34.0 2008.08.13 Trojan-Downloader.Win32.Exchanger.mn
K7AntiVirus 7.10.413 2008.08.13 -
Kaspersky 7.0.0.125 2008.08.13 Trojan-Downloader.Win32.Exchanger.mn
McAfee 5359 2008.08.12 -
Microsoft 1.3807 2008.08.13 TrojanDownloader:Win32/Cbeplay.gen!E
NOD32v2 3352 2008.08.13 a variant of Win32/Agent.ETH
Norman 5.80.02 2008.08.13 W32/DLoader.IWTI
Panda 9.0.0.4 2008.08.13 -
PCTools 4.4.2.0 2008.08.13 -
Prevx1 V2 2008.08.13 Malware Dropper
Rising 20.57.22.00 2008.08.13 -
Sophos 4.32.0 2008.08.13 Mal/EncPk-DA
Sunbelt 3.1.1542.1 2008.08.13 Trojan-Downloader.Exchanger.Gen.1
Symantec 10 2008.08.13 Downloader
TheHacker 6.3.0.3.046 2008.08.13 -
TrendMicro 8.700.0.1004 2008.08.13 TROJ_AGENT.KBE
VBA32 3.12.8.3 2008.08.13 -
ViRobot 2008.8.13.1335 2008.08.13 Spyware.Exchanger.Do.74752
VirusBuster 4.5.11.0 2008.08.12 -
Webwasher-Gateway 6.6.2 2008.08.13 Trojan.Dldr.Exchanger.DW
Additional information
File size: 74752 bytes
MD5...: 06bd0701d470475d32c6d98a0c685e4b
SHA1..: 0e1a02834b931a5d34d684f7708c918e0c8fa187
AhnLab-V3 2008.8.13.0 2008.08.13 Win-Trojan/Exchanger.74752.E
AntiVir 7.8.1.19 2008.08.13 TR/Dldr.Exchanger.DW
Authentium 5.1.0.4 2008.08.13 -
Avast 4.8.1195.0 2008.08.13 Win32:Trojan-gen {Other}
AVG 8.0.0.161 2008.08.13 Downloader.Agent.AJFH
BitDefender 7.2 2008.08.13 Trojan.Downloader.Exchanger.Gen.2
CAT-QuickHeal 9.50 2008.08.13 (Suspicious) - DNAScan
ClamAV 0.93.1 2008.08.13 Trojan.Agent-40781
DrWeb 4.44.0.09170 2008.08.13 Trojan.DownLoad.3248
eSafe 7.0.17.0 2008.08.12 Suspicious File
eTrust-Vet 31.6.6030 2008.08.13 Win32/Collet.DS
Ewido 4.0 2008.08.13 -
F-Prot 4.4.4.56 2008.08.13 -
F-Secure 7.60.13501.0 2008.08.13 Trojan-Downloader.Win32.Exchanger.mn
Fortinet 3.14.0.0 2008.08.13 W32/PolyExchanger.A!tr
GData 2.0.7306.1023 2008.08.13 Trojan-Downloader.Win32.Exchanger.mn
Ikarus T3.1.1.34.0 2008.08.13 Trojan-Downloader.Win32.Exchanger.mn
K7AntiVirus 7.10.413 2008.08.13 -
Kaspersky 7.0.0.125 2008.08.13 Trojan-Downloader.Win32.Exchanger.mn
McAfee 5359 2008.08.12 -
Microsoft 1.3807 2008.08.13 TrojanDownloader:Win32/Cbeplay.gen!E
NOD32v2 3352 2008.08.13 a variant of Win32/Agent.ETH
Norman 5.80.02 2008.08.13 W32/DLoader.IWTI
Panda 9.0.0.4 2008.08.13 -
PCTools 4.4.2.0 2008.08.13 -
Prevx1 V2 2008.08.13 Malware Dropper
Rising 20.57.22.00 2008.08.13 -
Sophos 4.32.0 2008.08.13 Mal/EncPk-DA
Sunbelt 3.1.1542.1 2008.08.13 Trojan-Downloader.Exchanger.Gen.1
Symantec 10 2008.08.13 Downloader
TheHacker 6.3.0.3.046 2008.08.13 -
TrendMicro 8.700.0.1004 2008.08.13 TROJ_AGENT.KBE
VBA32 3.12.8.3 2008.08.13 -
ViRobot 2008.8.13.1335 2008.08.13 Spyware.Exchanger.Do.74752
VirusBuster 4.5.11.0 2008.08.12 -
Webwasher-Gateway 6.6.2 2008.08.13 Trojan.Dldr.Exchanger.DW
Additional information
File size: 74752 bytes
MD5...: 06bd0701d470475d32c6d98a0c685e4b
SHA1..: 0e1a02834b931a5d34d684f7708c918e0c8fa187
최근의 해외에서 국내쪽으로 발송되는 스팸 이메일은 영어를 잘 모르고 관심없는게 오히려 약이 되는 것 같습니다.
728x90
반응형