Angelina Jolie malware

July 16th, 2008

Today, our HoneyPot captured a new Trojan named after movie star Angelina Jolie (file name: nude-anjelina.avi.exe). This is a massive spam campaign using different domain names but the same IP address.

Interestingly enough, the domains are registered to a Chinese company although the IP is located in Germany.

Fake suspended account still delivers malware:

Check out the registrar and the IP location:

Fairly new to AV vendors… unknown to most:

JSegura

This entry was posted on Wednesday, July 16th, 2008 at 10:04 am and is filed under Malware Trends. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.

Comments:

(0) comments
|
Add your comments