Beware The Greetings.com Malicious E-Mail

Written on Saturday, February 24th, 2007 by Jeremy Steele

I just received an e-mail from “Greetings.com (Greeting@Greetings.com)” which was sent using the eternalistic.net server (although, it is pretty easy to forge that), IP address of 71.236.195.71. The e-mail appears to be a greetings.com e-mail, but the link points to a Windows Virus labeled “YouTube.pif”, and the file is located on a Russian Server.

Based on a quick look I determined the software will edit the /system32/drivers folder, and it will replace svchost.exe with a piece of malware.

Below is a screenshot of the e-mail.

Greetings.com Virus E-mail

Please subscribe, or else I will cry. Do you really want to make a programmer cry?

Posted In Miscellaneous

Bookmark It

Related Posts

Leave a Reply

Note: By submitting your comment you agree to this blog's comment policy.

If you want a little icon next to your name - sign up for one at Gravatar.




© 2008 Jeremy Steele | Terms of Use

This blog is proudly hosted by: HostGator
And it is powered by WordPress!