Thanks for the tip, Steven.
https://www.virustotal.com/en/file/6159e15c7a5401ba8e7708755b75ce5bb911cb1dbe15253c13a06b4c0f35e5e3/analysis/1429196664/
Kaspersky should detect it now - time to force a definition update...
Regards,
Mike
--
Mike Kellenberger | Escapenet GmbH
www.escapenet.ch
+41 52 235 0700/04
Skype mikek70atwork
On 16.04.2015 17:02, Steven Glogger wrote:
hey mike,
hm… try to upload the exe to www.virustotal.com <http://www.virustotal.com>
maybe you get some more information about the name and so on …
good luck,
-steven
Am 16.04.2015 um 16:54 schrieb Mike Kellenberger
<mike.kellenber...@escapenet.ch <mailto:mike.kellenber...@escapenet.ch>>:
Hi all
I've been contacted by a couple of customers which caught a new virus
in the last few days, sent by e-mail in a .zip file containing an
.exe. (yes, there are still people out there who open these kind of
attachments if they come from a known address)
The .zip file passes our AV on the mailserver (Kaspersky) as well as
our desktop AV (Symantec) with the newest definitions.
Once infected, it spreads via e-mail (probably through the outlook
e-mail profile, it authenticates nicely against our mailserver anyway)
blasting out hundreds of mails in a single short session only to sleep
again until the next day...
Has anybody else seen this? Is there a name or details or cure fo it yet?
Regards,
Mike
--
Mike Kellenberger | Escapenet GmbH
www.escapenet.ch <http://www.escapenet.ch>
+41 52 235 0700/04
Skype mikek70atwork
_______________________________________________
swinog mailing list
swinog@lists.swinog.ch
http://lists.swinog.ch/cgi-bin/mailman/listinfo/swinog
_______________________________________________
swinog mailing list
swinog@lists.swinog.ch
http://lists.swinog.ch/cgi-bin/mailman/listinfo/swinog