A new wave of "Internet Explorer 7.0 Beta" spam is currently being reported. All links to an "update.exe" file, which is hosted on various URLs. The e-mail message is adopting spam methods by "hiding" the image link among chunks of text copied from web sites.
Subject: Internet Explorer 7.0 Beta
we have seen these so far (but there are likely many more):
It doesn't look like a feasable idea to block all these sites. However, you probably should filter e-mail from 'firstname.lastname@example.org' (that particular "From" address has been used in the past).
update.exe itself is a downloader which will install a second stage binary upon execution.I will be teaching next: Intrusion Detection In-Depth - SANS Las Vegas Spring 2020
May 7th 2007
1 decade ago