| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <037b01c54432$4301eb60$1908d5d8@thorndom.net> Date: Mon Apr 18 17:18:43 2005 From: labrams at bleepingcomputer.com (Lawrence Abrams) Subject: gobolook / hotoffer dropper I put up an analysis here: http://www.bleepingcomputer.com/analysis/?anal=globolook-dropper Lawrence Abrams Bleeping Computer: http://www.bleepingcomputer.com ----- Original Message ----- From: "Willem Koenings" <infsec@...il.com> To: <full-disclosure@...ts.grok.org.uk> Sent: Sunday, April 17, 2005 11:06 AM Subject: [Full-disclosure] gobolook / hotoffer dropper hi, there's already some coverage in the web about this scam. http://www.webhelper4u.com/CWS/CWSdropper_exe_msgs.html today i found one new dropper, if someone wish to play with it / analyze, here it is: hxxp://www.globolook.com/v179/dropper.exe hxxp://www.globolook.com/v179/dropper.chm hxxp://www.globolook.com/v179/xxx.html W. _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ -- No virus found in this incoming message. Checked by AVG Anti-Virus. Version: 7.0.308 / Virus Database: 266.9.15 - Release Date: 4/16/2005 -- No virus found in this outgoing message. Checked by AVG Anti-Virus. Version: 7.0.308 / Virus Database: 266.9.16 - Release Date: 4/18/2005
Powered by blists - more mailing lists