This fake Sendspace spam leads to malware on anifkailood.ru:Date: Mon, 10 Dec 2012 06:01:01 -0500The malicious payload is at [donotclick]anifkailood.ru:8080/forum/links/column.php hosted on the following IPs:
From: "Octavio BOWMAN" [AdlaiBaldacci@telefonica.net]
Subject: You have been sent a file (Filename: [redacted]-722.pdf)
Sendspace File Delivery Notification:
You've got a file called [redacted]-018.pdf, (767.2 KB) waiting to be downloaded at sendspace.(It was sent by Octavio BOWMAN).
You can use the following link to retrieve your file:
Download Link
The file may be available for a limited time only.
Thank you,
sendspace - The best free file sharing service.
----------------------------------------------------------------------
Please do not reply to this email. This auto-mailbox is not monitored and you will not receive a response.
202.180.221.186 (GNet, Mongolia)
212.162.52.180 (Secure Netz, Germany)
212.162.56.210 (Secure Netz, Germany)
Plain list:
202.180.221.186
212.162.52.180
212.162.56.210
No comments:
Post a Comment