Análisis realizado por Flos Carmeli Abescoro

Spammers took advantage of NetSuite, a company known for its cloud-based business management software to spread malicious files through e-mail notifications. The spammed message informs its receipients that there is a new campaign 'integrated in their top accounts.'

The email deceives the recipients by asking them to activate the new campaign tool through a cetain link. The link redirects to a website that downloads a malicious or executable file that behaves as the Blackhole Exploit Kit. However, during investigation and analysis, the website has been taken down hence the actual file was not seen.

 Fecha/hora de bloqueo del spam: 01 de febrero de 2013 GMT-8
 TMASE
  • Motor TMASE:7.0
  • Patrón TMASE: 9506