[Full-Disclosure] Another noxious M$ trojan
Gregory A. Gilliss
ggilliss at netpublishing.com
Thu Nov 20 05:23:59 GMT 2003
For all who were interested in reviewing the suspect binaries, I have
posted them on my Web site:
http://www.gilliss.com/greg/bin/awsqyf.zip
http://www.gilliss.com/greg/bin/update1991.zip
The first is 52521 bytes and the second is 51529 bytes. Both executables,
when uncompressed, measure 106496 bytes. Each file expands to a Windows
.EXE file.
These files are suspected MALWARE and should not be executed except under
controlled circumstances. I accept no responsibility for damages.
BTW, I hope it's just another Gibe variant also...problem with running
UNIX and getting all these useless attachments >-)
G
> -----Original Message-----
> From: Gregory A. Gilliss [mailto:ggilliss at netpublishing.com]
> Sent: Wednesday, November 19, 2003 6:22 PM
> To: full-disclosure at lists.netsys.com
> Subject: [Full-Disclosure] Another noxious M$ trojan
>
>
> Hello all:
>
> Heads up - I received this in my mailbox this afternoon (Wednesday PST).
>
<SNIP>
--
Gregory A. Gilliss, CISSP E-mail: greg at gilliss.com
Computer Security WWW: http://www.gilliss.com/greg/
PGP Key fingerprint 2F 0B 70 AE 5F 8E 71 7A 2D 86 52 BA B7 83 D9 B4 14 0E 8C A3
Full-Disclosure is hosted and sponsored by Secunia.