New "voicemail" malware sample (May 6 / 2014)

Do you have a question? Post it now! No Registration Necessary.  Now with pictures!

Threaded View
https://www.virustotal.com/en/file/c487a874508edb2de0a0561d7af2ef9ede6e1e1117cd52b5701aa86e1bdb2c97/analysis/

VT detection rate:  1/52

The AV/AM industry should be proud of itself!

And look at the only AM software that detects this new file:

Qihoo-360 HEUR/Malware.QVM20.Gen

Where is Kaspersky?  You used to be able to rely on Kaspersky to detect
this shit.

This latest sample can be downloaded from here:

http://filepost.com/files/23mb5mb7/VoiceMail2.zip/

Anubis analysis:

http://anubis.iseclab.org/?action=result&task_id=1314f9b7892b5a8b4b9f3981b08b74c13

Didn't seem to do anything.


Spam:

---------------
Received:   from [27.66.155.1]  
Date:       Tue, 6 May 2014 20:30:00 +0700
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:7.0.1) Gecko/20110929
            Thunderbird/7.0.1
Subject:    Voice Message from Unknown (997-665-9575)
X-Spam:     Not detected

From: 997-665-9575

You received a voice mail : VoiceMail.wav (186 KB)

Caller-Id: 997-665-9575
Message-Id: 19220-A5D-munged
--------------

Re: New "voicemail" malware sample (May 6 / 2014)

Virus Guy used his keyboard to write :
Quoted text here. Click to load it

22 out of 52 today.



Site Timeline