The Latest in IT Security

“Scan from a Hewlett-Packard ScanJet ” spam / debiudlasduisioa.ru

16
Mar
2012

Another fake “HP scan” document with a malicious attachment.

Date:      Fri, 16 Mar 2012 10:49:18 -0300
From:      scan@victimdomain.com
Subject:      Fwd: Scan from a Hewlett-Packard ScanJet 684248
Attachments:     HP_Document-16-539.htm

Attached document was scanned and sent

to you using a Hewlett-Packard Scan Jet 57968D.

SENT BY: KAM
PAGES : 4
FILETYPE: .HTML [Internet Explorer File]

The payload is on debiudlasduisioa.ru:8080/images/aublbzdni.php  – the IPs are the same as in this spam run and should be blocked if you can do it.

Related posts:
  1. “Scan from a Hewlett-Packard ScanJet” malware / doosdkdkjsjdfo.ru
  2. “Scan from a Hewlett-Packard ScanJet ” malware / dsakhfgkallsjfd.ru
  3. “Scan from a Hewlett-Packard Officejet” malicious spam / cserimankra.ru and samaragotodokns.ru
  4. “Scan from a Hewlett-Packard Officejet” spam / caskjfhlkaspsfg.ru
  5. “Scan from a Hewlett-Packard Officejet 745065” and 94.23.116.30

Tags:  
Written by Dynamoo's Blog
0 Comments

Leave a reply


Categories

SUNDAY, FEBRUARY 23, 2025
WHITE PAPERS

Mission-Critical Broadband – Why Governments Should Partner with Commercial Operators:
Many governments embrace mobile network operator (MNO) networks as ...

ARA at Scale: How to Choose a Solution That Grows With Your Needs:
Application release automation (ARA) tools enable best practices in...

The Multi-Model Database:
Part of the “new normal” where data and cloud applications are ...

Featured

Archives

Latest Comments