|
Title: Received an email and have no idea what it is. Post by: Phinnaeus Gage on December 30, 2013, 02:48:14 PM First off, I've never started a thread in this section before, and pretty sure I haven't posted in it, but now I seek advice as to what the following pertains to.
CAUTION: Don't click that URL unless it's somehow opened safely, for I don't know how to do such, hence seeking info. Quote Payment Notification Received ! Username: dabitcoinguy@gmail.com Password: XXXXXXXXX Current Balance: 1.XXXXXXXX BTC https://i.minus.com/iJj6bYdyYFIYQ.png It was in the spam folder, hence the concern. Thank you in advance, ~Bruno Kucinskas moderator action: made link into an image to prevent accidental copy/pasting and auto-hyperlinking scripts. Title: Re: Received an email and have no idea what it is. Post by: Colin Miner on December 30, 2013, 02:59:08 PM First off, I've never started a thread in this section before, and pretty sure I haven't posted in it, but now I seek advice as to what the following pertains to. Its a phishing attempt to get you to click the link :'(CAUTION: Don't click that URL unless it's somehow opened safely, for I don't know how to do such, hence seeking info. Quote Payment Notification Received ! Username: dabitcoinguy@gmail.com Password: XXXXXXXXX Current Balance: 1.XXXXXXXX BTC URL : It was in the spam folder, hence the concern. Thank you in advance, ~Bruno Kucinskas Don't click the link, there is probably a virus at the end of it Title: Re: Received an email and have no idea what it is. Post by: Seccour on December 30, 2013, 03:14:39 PM First off, I've never started a thread in this section before, and pretty sure I haven't posted in it, but now I seek advice as to what the following pertains to. Its a phishing attempt to get you to click the link :'(CAUTION: Don't click that URL unless it's somehow opened safely, for I don't know how to do such, hence seeking info. Quote Payment Notification Received ! Username: dabitcoinguy@gmail.com Password: XXXXXXXXX Current Balance: 1.XXXXXXXX BTC URL : It was in the spam folder, hence the concern. Thank you in advance, ~Bruno Kucinskas Don't click the link, there is probably a virus at the end of it So OP, remove the link ^^ Title: Re: Received an email and have no idea what it is. Post by: grue on December 30, 2013, 04:34:26 PM the link leads to a page with a java applet.
edit: confirmed drive-by applet. launches regedit to disable UAC. Title: Re: Received an email and have no idea what it is. Post by: Phinnaeus Gage on December 30, 2013, 09:29:26 PM the link leads to a page with a java applet. edit: confirmed drive-by applet. launches regedit to disable UAC. Thanks, grue, assuming you disabled the link. I was toying with breaking it up so that it wouldn't work, but for some reason opted to give the warning in red instead. Seldom do I click links in my email, and this one definitely didn't smell right. Thanks to all that replied. ~TMIBTCITW Title: Re: Received an email and have no idea what it is. Post by: deepceleron on December 31, 2013, 05:01:05 AM the link leads to a page with a java applet. Is it able to do this on Java v45? If so, that's what we call zero-day, and it should be captured and sent to Oracle and virus companies.edit: confirmed drive-by applet. launches regedit to disable UAC. Java has proved it can never be secure though, in that there has NEVER been a version where your computer couldn't get infected through it just by visiting a web page. Kill with fire. Title: Re: Received an email and have no idea what it is. Post by: Caiapfas on January 01, 2014, 01:40:53 AM best policy never ever open anything or click any link unless you are expecting it and/or know who sent it. even if it's from someone/some business/some account you know or have and have doubt go directly to the website and login there and delete the email
Title: Re: Received an email and have no idea what it is. Post by: rarkenin on January 01, 2014, 03:08:02 AM NASTY VIRUS
Did a decompile and analysis in a VM, looks very nasty. Disables UAC, downloads a remote access tool, and even crashes my decompiler due to obfuscation. Obviously very complex but also not too polished, debug statements printing to console remain. PM me to get details about all of the source and a copy of the decompiled/original files, some of which are not directly accessible. I'll send it in a passworded ZIP, but once I send it to you it's YOUR responsibility not to run it. Title: Re: Received an email and have no idea what it is. Post by: gweedo on January 01, 2014, 03:25:42 AM I got this same email of course I didn't click it.
Title: Re: Received an email and have no idea what it is. Post by: U1TRA_L0RD on January 01, 2014, 03:31:34 AM I opened this on my old virus tester laptop and its very nasty, now to go reinstall windows XP.
Title: Re: Received an email and have no idea what it is. Post by: NixZiZ on January 28, 2014, 02:07:08 PM Ouch... Happy I googled this first!
Now to hook up a nice, shiny XP VM, shut off the network after the nasty installs... and see what happens! No patches, of course. I guess I'll post a video of it later too, just for shits. :) Title: Re: Received an email and have no idea what it is. Post by: U1TRA_L0RD on January 28, 2014, 02:22:53 PM I got this same email of course I didn't click it. I guess this iswhy we dont show our emails to the community.Title: Re: Received an email and have no idea what it is. Post by: Caesium on January 28, 2014, 05:16:08 PM I got this same email of course I didn't click it. I guess this iswhy we dont show our emails to the community.That's an impressive ratio. Mine is more like for every 1 legit email, I get 100 of these phishing/spams. Title: Re: Received an email and have no idea what it is. Post by: Caiapfas on January 28, 2014, 05:42:00 PM I opened it and it gave me 3 BTC....OMG they are lying to you. open it open it.
;) Title: Re: Received an email and have no idea what it is. Post by: U1TRA_L0RD on January 28, 2014, 06:16:21 PM I opened it and it gave me 3 BTC....OMG they are lying to you. open it open it. You owe me a new laptop.;) Title: Re: Received an email and have no idea what it is. Post by: Sonny on January 30, 2014, 10:25:44 AM I opened it and it gave me 3 BTC....OMG they are lying to you. open it open it. You owe me a new laptop.;) lol :P Title: Re: Received an email and have no idea what it is. Post by: Caiapfas on January 30, 2014, 08:09:50 PM No need to ask this every again :). If the email is from unknown or even know sources and has links go directly to the site and login and see it there.
Delete the email... problem solved. No matter how good antivirus, firewall or other protection you have it only takes one stupid user to fuck it all up. To the rest of us, this is why spam and viruses exist ...stupid users. If everyone deleted spam, spamming would dry up in a month. Title: Re: Received an email and have no idea what it is. Post by: roslinpl on January 30, 2014, 08:47:42 PM First off, I've never started a thread in this section before, and pretty sure I haven't posted in it, but now I seek advice as to what the following pertains to. CAUTION: Don't click that URL unless it's somehow opened safely, for I don't know how to do such, hence seeking info. Quote Payment Notification Received ! Username: dabitcoinguy@gmail.com Password: XXXXXXXXX Current Balance: 1.XXXXXXXX BTC https://i.minus.com/iJj6bYdyYFIYQ.png It was in the spam folder, hence the concern. Thank you in advance, ~Bruno Kucinskas moderator action: made link into an image to prevent accidental copy/pasting and auto-hyperlinking scripts. looks scam for me. But :) maybe you re 1 btc reacher :"P |
