Threat Level: green Handler on Duty: Didier Stevens

SANS ISC: (Another) AOL Pwstealer SANS ISC InfoSec Forums

Participate: Learn more about our honeypot network
https://isc.sans.edu/honeypot.html

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
(Another) AOL Pwstealer

Just a quick note about (another) one password stealer that we received today, focused on AOL. This one is not detected by any AV on Virustotal yet, althougth after I sent it to my personal AV list, some already answered that it will be included in the next signature's release.
This one had theĀ  name of new_pict.exe , maybe trying to fool the person to click on an attachment file.

If you run this file you will get this screen asking for a screen name and password.

------------------------------------------------
Pedro Bueno ( pbueno //%// isc. sans. org)

Pedro

155 Posts
ISC Handler

Sign Up for Free or Log In to start participating in the conversation!