HTML_PHISH.YTUBO
October 20, 2016
PLATFORM:
Windows
OVERALL RISK RATING:
DAMAGE POTENTIAL:
DISTRIBUTION POTENTIAL:
REPORTED INFECTION:
INFORMATION EXPOSURE:
Threat Type: Trojan
Destructiveness: No
Encrypted:
In the wild: Yes
OVERVIEW
This Trojan arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites.
TECHNICAL DETAILS
File Size: 175126 bytes
File Type: HTML, HTM
Memory Resident: Yes
Initial Samples Received Date: 18 Jul 2016
Arrival Details
This Trojan arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites.
Other Details
This Trojan connects to the following possibly malicious URL:
- http://send.{BLOCKED}m.in/megacashya.php
It does the following:
- This malware poses as a login required Microsoft Excel site, requesting for your email and password