PDA

View Full Version : E-Mail Scam ?



rocknrod
08-23-2005, 12:18 PM
Not sure if this is correct but just in case:
"Emails with pictures of Osama Bin-Laden hanged are being sent and the moment that you open these emails your computer will crash and you will not be able to fix it!!!

This e-mail is being distributed through countries around the globe, but mainly in the US and Israel.

Don't be inconsiderate; send this warning to whomever you know.

If you get an email along the lines of "Osama bin Laden Captured" or "Osama Hanged" don't open the attachment.

Confirmed at: http://www.snopes.com/computer/virus/osamahanged.asp

Origins: There are few headlines that would grab the attention of more computer users around the world than "Osama bin Laden Captured," and that's exactly what whoever created this lure was counting on to snare unsuspecting victims who use Microsoft platforms.

"Osama bin Laden Captured" isn't a virus in itself; it's the text of a message that includes a link to a file called EXPLOIT.EXE. When a message recipient clicks on this link to view what he thinks are pictures of Osama bin Laden's capture, he can end up downloading an executable Trojan known as Backdoor-AZU, BKDR_LARSLP.A, Download.Trojan, TrojanProxy.Win32.Small.b,or Win32.Slarp. Clicking the embedded link in the "Osama bin Laden Captured" message auto-executes a file called "EXPLOIT.EXE," which exploits a known security hole to download the Trojan. According to McAfee Security:

The Trojan opens a random port on the victim's machine. It sends the Port information to a webpage at IP address 66.139.77.145. The Trojan listens on the open port for instructions and redirects traffic to other IP addresses. Spammers and hackers can take advantage of compromised systems by using the infected computer as a middleman, allowing them to pass information through it and remain anonymous."


What do you think ?

ckadiddle
08-23-2005, 02:35 PM
The text "send this ... to whomever you know" should be the tip off that you need to delete it immediately without further ado. Keep your antivirus definitions and anti spyware definitions up to date.

DEFYANT
08-23-2005, 02:50 PM
I never click anything with .EXE from an email unless I am certian who the sender is and I am expecting something.

fastblackmerc
08-23-2005, 04:13 PM
I never click anything with .EXE from an email unless I am certian who the sender is and I am expecting something.
Better yet, if you don't know who the sender is don't even open it. Good (& free) email tool is Mailwasher.... checks your email while it's still on your email company's server. You can delete it and bounce back your emai address as invalid.