• Home
  • Services
  • About Us
  • Blog
  • Contacts

Dirty fresh malicious attachments from our real-time spam collection

8 years ago
pcsl_admin
No Comments

Through Proofpoint’s research, more than 90% of targeted attacks start with email, and these threats are always evolving. In 2016 March, we deployed our new spam traps system which is based on normal user scenarios. This means that we can harvest the freshest malicious binaries being delivered through email same as normal end users . Most of them are dirty fresh, we checked some of them and found that a certain percentage of them are never-before-seen on virus total. Let’s see an example:

40E18A472F6970A95DE30151241EE3C4.eml

And I check the hash against virus total database, I does not find the record. Then I upload the script to virus total and here is the result on the first run.

https://www.virustotal.com/en/file/905e5ed4cf57cbcf650fd0a23db038f7fb87cf4c0f35bface3e8b7b1f26165bc/analysis/1486301379/

Detection ratio: 5 / 54
Analysis date: 2017-02-05 13:29:39 UTC ( 3 minutes ago )
Antiy-AVL Trojan/Generic.ASVCS3S.428 20170205
F-Secure Trojan:JS/Kavala.D 20170205
Fortinet JS/Nemucod.CDR!tr 20170205
Microsoft TrojanDownloader:JS/Swabfex.P 20170205
Sophos Mal/DrodZp-A 20170205
Next Post
Ipa installers collection from app store is ready for release
You must be logged in to post a comment.

Recent Posts

  • Certification criteria for a valid and high-performance anti malware product
  • Blue Hexagon Earns Perfect Score in Network Threat Protection Test by PCSL. Achieves 100% detection efficacy, 0% false positive rate.
  • Android Security Product Certificate (NO. 20190109A) – T-Guard@SK Telecom CO., Ltd
  • Android Security Product Certificate (NO. 20181118A) – OnVaccine@INetCop
  • New fresh Linux malware harvested from our SSH honeypot

Recent Comments

    Archives

    • November 2019
    • October 2019
    • January 2019
    • November 2018
    • February 2017

    Categories

    • Data_feeds
    • Test

    Meta

    • Log in
    • Entries feed
    • Comments feed
    • WordPress.org

    © 2008-2023 All rights reserved. Jiaxing Chenxiang Information Technology Co., Ltd.