Spy on your wife, get infected
Our HoneyPots caught this site spymycomputer.com and one of its products “spy man”
I decided to take a closer look:
First, as reported by our HoneyPots, the site initiates two drive-bys:
The drive-by files are not very well detected yet, as shows this Virus Total scan:
The source code of spymycomputer.com contains 3 iframes:
frantsuz.com was listed by Google: http://google.com/safebrowsing/diagnostic?site=frantsuz.com/
abbcp.cn is already blacklisted by our friend Steven Burn over at hpHosts:
As far as the software itself, “Spy Man” you may want to think about it twice before installing it:
Key logging programs have always had a bad reputation… Well, the name itself “Spy Man” sounds a little bit like a Cold War espion character 
Jerome Segura
Malware ID: 8cbe7e2692a5bdaabfc6b2253c7624e7.zip
Malware ID: f00173d0a26085d3333578f2d90e5c64.zip
Comments:
|
|
