Full Disclosure mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Potentially new Virus

From: Andreas Gietl <a.gietl () e-admin de>
Date: Tue, 25 Nov 2003 09:41:21 +0100
On Tuesday 25 November 2003 08:46, Paul Szabo wrote:

there it is:

http://www.sophos.com/virusinfo/analyses/trojsysbuga.html

sophos just released the IDE


Tireman <Tireman () shaw ca> wrote:

Has anyone come across a virus with the following message body and
attached a file called 'Private.zip' which unzips to wendynaked.jpg.exe

I couldn't find any info on Symantecs security response site or Google
either.


Seen them: started to get them today, about 10 hours ago.

The EXE seems dated 23 Nov, so this is a new virus; no wonder the AV
vendors do not yet know about it; you may wish to send your sample to
them for analysis. (Each new virus is an example where "traditional"
AV fails to protect...)

Cheers,

Paul Szabo - psz () maths usyd edu au 
http://www.maths.usyd.edu.au:8000/u/psz/ School of Mathematics and
Statistics  University of Sydney   2006  Australia

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html


-- 
e-admin internet gmbh
Andreas Gietl                                            tel +49 941 3810884
Ludwig-Thoma-Strasse 35                      fax +49 (0)1805/39160 - 29104
93051 Regensburg                                  mobil +49 171 6070008

PGP/GPG-Key unter http://www.e-admin.de/gpg.html




_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
Previous By Date Next
Previous By Thread Next

Current thread: