http://webmail.{BLOCKED}antravel.com:8080/forum/viewtopic.php
Publish Date: 02 September 2013
URL gesperrt am/um:Donnerstag, 29. August 2013 20:20:00 GMT-8
Bewertung:: Hoch
Domäne:: alsultantravel.com
Kategorie: Disease Vector
Beschreibung:
TSPY_FAREIT.AFM attempts to steal stored account information and other sensitive information and send the gathered information via HTTP POST to this URL. This FARFEIT variant is the final payload of a Blackhole Exploit Kit related spam run.