Analysis byFlos Carmeli Abescoro

Spammers took advantage of NetSuite, a company known for its cloud-based business management software to spread malicious files through e-mail notifications. The spammed message informs its receipients that there is a new campaign 'integrated in their top accounts.'

The email deceives the recipients by asking them to activate the new campaign tool through a cetain link. The link redirects to a website that downloads a malicious or executable file that behaves as the Blackhole Exploit Kit. However, during investigation and analysis, the website has been taken down hence the actual file was not seen.

 SPAM BLOCKING DATE / TIME: 01 de февраля de 2013 GMT-8
 TMASE
  • TMASE Engine: :
  • Patrón TMASE: :9506