Apr21
9:20 pm (UTC-7)   |   by Eduardo Godinho (Threats Analyst)

This week, we’ve received some reports related to a new malware attack regarding a tragedy that has early this month: a five-year-old child was thrown out of a window. The police are investigating the tragedy and the latest reports say that all evidences indicate the parents as the ones responsible.

Hackers sent the spammed email message below, where they promise a video with new and exclusive information regarding the case, including findings about who the suspects are.

Figure 1: Email message promising to reveal the responsible parties of the murder

The link in the mail has an obscured address (hxxp://83.x.x.136/terranoticias/index.html) to a fake page from a big and legitimate ISP in Brazil (Terra Networks):

Figure 2: Fake page from a Legitimate Brazilian ISP

After the user clicks the link promising the video, the browser instead tries to download the file verdade.com.

Figure 3: Download dialog box

This file is detected by Trend Micro as TROJ_BANLOAD.EOZ. Users who have Trend Micro protection have been safe from this threat from the beginning, as Web Reputation Services (WRS) proactively recognizes the fake Web site.

If you're new here, you may want to subscribe to our RSS feed. Thanks for visiting!



This entry was posted on Monday, April 21st, 2008 at 9:20 pm and is filed under Security . Responses are closed, but you can trackback from your own site.



One Response to “Brazilian Tragedy Used in Malware Attack”

Trackbacks

  1. Tragédia Brasileira usada para ataques de Malware

Curiosity is the Nourishment of Social Engineering
Also Hackable: Microprocessors


 
TrendWatch Hijack This Web Protection Add-On
Free Online Virus Scan Rootkit Buster Submit Suspicious Files
Global Malware Map RUBotted? Trend Micro
 



    		 
© Copyright 2009 Trend Micro Inc. All rights reserved. Legal Notice