Re: [swinog] New .exe virus in.zip file via mail

-- Mike Kellenberger | Escapenet GmbH www.escapenet.ch +41 52 235 0700/04 Skype mikek70atwork On 16.04.2015 17:02, Steven Glogger wrote: > hey mike, > > hm… try to upload the exe to www.virustotal.com http://www.virustotal.com > maybe you get some more information about the name and so on … > good luck, > > -steven > >> Am 16.04.2015 um 16:54 schrieb Mike Kellenberger >> <mike.kellenberger@escapenet.ch mailto:mike.kellenberger@escapenet.ch>: >> >> Hi all >> >> I've been contacted by a couple of customers which caught a new virus >> in the last few days, sent by e-mail in a .zip file containing an >> .exe. (yes, there are still people out there who open these kind of >> attachments if they come from a known address) >> >> The .zip file passes our AV on the mailserver (Kaspersky) as well as >> our desktop AV (Symantec) with the newest definitions. >> >> Once infected, it spreads via e-mail (probably through the outlook >> e-mail profile, it authenticates nicely against our mailserver anyway) >> blasting out hundreds of mails in a single short session only to sleep >> again until the next day... >> >> Has anybody else seen this? Is there a name or details or cure fo it yet? >> >> Regards, >> >> Mike >> >> -- >> Mike Kellenberger | Escapenet GmbH >> www.escapenet.ch http://www.escapenet.ch >> +41 52 235 0700/04 >> Skype mikek70atwork >> >> >> _______________________________________________ >> swinog mailing list >> swinog@lists.swinog.ch >> http://lists.swinog.ch/cgi-bin/mailman/listinfo/swinog >