C.I.S.R.T.

Fake iTunes Gift Certificate

Fri, 07 May 2010 08:32:29 +0000

We recevied spams about fake iTunes Gift Certificate. Be careful of these spams.

Subject:Thank you for buying iTunes Gift Certificate!

Body:
Hello!
You have received an iTunes Gift Certificate in the amount of $50.00 You can find your certificate code in attachment below.

Then you need to open iTunes. Once you verify your account, $50.00 will be credited to your account, so you can start buying music, games, video right away.

iTunes Store.

Attachment: iTunes_certificate_447.zip

Tags - itunes certificate 447.zip

Spams with Hello Darling

Tue, 03 Nov 2009 11:37:52 +0000

The spams had been sent with the subject "Hello Darling" and attchment "photo.zip".

Subject: Hello Darling
Mail body:
Hi, how are you? My photos Which I promised in attached file

Attchment: photo.zip

............

Tags - hello darling , photo.zip , photo.exe

Get Back to My Office for More Details Spams

Sun, 01 Nov 2009 10:55:09 +0000

I saw lots of spams which contained subject "get back to my office for more details" and attchment "info.zip" in recent two days. Be careful of them.

From: boss <"boss">
Subject: get back to my office for more details
Mail body:
Please read the attached letter and get back to my office for more details to proceed further.

Thanks and have a very nice day.

............

Tags - info.zip , get back to my office for more details

Facebook Password Reset Confirmation Spams

Tue, 27 Oct 2009 01:10:07 +0000

Be careful of the new round of spams about Facebook Password Reset Confirmation.

From: The Facebook Team
Subject: Facebook Password Reset Confirmation.
Mail body:
Hey gt ,

Because of the measures taken to provide safety to our clients, your password has been changed. You can find your new password in attached document.

............

Tags - facebook password 6ff26.zip , facebook password c92dd.zip , facebook password reset confirmation

Contract of Settlements Spams

Sat, 24 Oct 2009 10:53:50 +0000

There is a new round of spams, which contained the subject titles as "Contract of Settlements" and the attachments as "contract_1.zip".

Be careful.

Subjects: Contract of Settlements

Mail body:
Greetings,
We have prepared a contract and added the paragraphs that you wanted to see in it. Our lawyers made alterations on the last page. If you agree all the provisions we are ready to make the payment on Friday for the first consignment, We are enclosing the file with prepared contract. Password: 34****
............

Tags - contract 1.zip , contract of settlements

Conflicker.B Infection Alert Spams

Tue, 20 Oct 2009 02:30:55 +0000

Be careful of spams about Conflicker.B Infection Alert.

They are the same gang as i mentioned before.

Subject:Conflicker.B Infection Alert
Mail body:
............

Tags - conflicker.b , install.zip

More Spams

Thu, 15 Oct 2009 07:44:19 +0000

Numerous spams had been sent these days. The name of attchments are like "DHL_package_label_1f553.zip" , "DHL_print_label_433a6.zip" , "DHL_Label_a4f79.zip" , "DHL_Package_ac42d.zip" , "install.zip", etc.

Be careful of these spams.

I listed some spams' content:

Quotation

Subject: DHL service. You should get the parcel! Delivery NR.6445
Mail body:
Hello!

The courier company was not able to deliver your parcel by your address. Cause: Error in shipping address.

You may pickup the parcel at our post office personaly!

Please note!
The shipping label is attached to this e-mail. Please print this label to get this package at our post office.

Thank you for attention.
DHL Delivery Services.

............

Tags - dhl label , dhl package , dhl print label , dhl package label , install.zip , trojan.win32.inject

Fake Hizer Mills Video

Sat, 16 Feb 2008 11:20:05 +0000

In recent two days, we found similar spams to the Hillary Clinton video spams. The following malicious URLs are inaccessable now:

http://bibber.bi.funpic.de/test/bild/images/gallery/susy/rdown.php?ugeih
http://www.neufeld-media.de/Neufeld-Media/Re/news/rdown.php?lEtEmwn
http://bibo1981.bi.funpic.de/b/movie/rdown.php?ojfbG

We received another spam about Hizer Mills video today. The subject lines are such as "Sensation.Video New - make haste to look!!!".

The screenshot of spams:
............

Tags - pousadarecantonatureza.com.br , news m.exe , vshost.exe , loca.exe , trojan.win32.agent.exq , trojan.win32.agent.epo

Hillary Clinton Full Video?

Wed, 13 Feb 2008 06:57:11 +0000

The United States 2008 presidential election is underway. Hillary Clinton and Barack Obama already eyeing another Super Tuesday - March 4,2008.

As while, the bad guys also eyeing the United States 2008 presidential election. We received a new trojan spam about it today. The subject lines of these spams are such as "Hillary Clinton Full Video !!!".

The screenshot of spams body:
............

Tags - mpg.exe , inst526.exe , hillary clinton , barack obama , trojan.win32.agent.epo , canotajetrilly.com

Fake Video of Britney Spears

Fri, 08 Feb 2008 08:09:02 +0000

Bad guys seem liking Paris Hilton and Britney Spears. They always use Paris Hilton and Britney Spears as bait.

Today we received another spam spreading as fake video of Britney Spears.

The subjects are such as: Crazy Britney does it again!

The screenshot of spam body:
............

Tags - play.exe , 7sa2 , hahne.id.au