解析者: Flos Carmeli Abescoro

Spammers took advantage of NetSuite, a company known for its cloud-based business management software to spread malicious files through e-mail notifications. The spammed message informs its receipients that there is a new campaign 'integrated in their top accounts.'

The email deceives the recipients by asking them to activate the new campaign tool through a cetain link. The link redirects to a website that downloads a malicious or executable file that behaves as the Blackhole Exploit Kit. However, during investigation and analysis, the website has been taken down hence the actual file was not seen.

 スパムブロック日時 : 2013年2月1日 22:00:00 GMT-8
 TMASE
  • TMASEエンジン:7.0
  • TMASEパターンバージョン:9506