Tuesday, January 15, 2008

Storm <3's You!

Storm (Nuwar, CME711, etc) just reminded me that Valentine's is less than a month away. I've gotten four recycled e-mails looking to spread some love. When I first got the copies, only two AV vendors (NOD32v2 & Webwasher-Gateway) on VirusTotal.com were detecting it as malicious.

Subject: Our Love is Free
Body: When Love Comes Knocking

Subject: I Love Thee
Body: Words in my Heart

Subject: A Is For Attitude
Body: A Dream is a Wish

Subject: Eternity of Your Love
Body: The Moon & Stars

The webpage contains some URL encoded text that links to "with_love.exe"