lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [day] [month] [year] [list]
Message-ID: <450E876B.7000104@gmail.com>
Date: Mon, 18 Sep 2006 17:17:55 +0530
From: Vishweshwar S Singh Deo <vssinghdeo@...il.com>
To: Dev Anand <deva.security@...il.com>
Cc: full-disclosure@...ts.grok.org.uk
Subject: Re: Info about HTA file [spam or malware ?]

Hi.

Just wanted to check on the source of the mail. Can you paste the
header, just to make sure it got via the yahoo domain.

regards

Vishweshwar

Dev Anand wrote:
> Hi All,
> 
> Well two days back we received an email from  noreply@...oo.com with an
> username and password and a .hta attachment called mail.zip which contained
> a hta file .
> 
> 
> This attachment contains a zip file with name mail.zip and size of *2020
> bytes* and MD5sum of *3a348133a7c4ad8d8030a02c5fa886e3. *This zip file
> contains a file *message.hta [*html application*] and*  size of *3155
> bytes*MD5sum is
> *dc7172ab522da1e20f73c575d1f8d96c*
> 
> Anybody can shed some light on this .
> 
> Thanks in advance.
> 
> *Deva*
> 
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/
> 


-- 
regards

Vishweshwar S Singh Deo

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ