A forum for reverse engineering, OS internals and malware analysis 

Forum for analysis and discussion about malware.
 #16926  by GamingMasteR
 Fri Nov 30, 2012 10:01 am
Hello,

In attachments a file looks like malware that was sent by one Syrian embassy to others, asking the receiver to just open it :)
Attachments
pw:infected
(27.3 KiB) Downloaded 85 times
 #16927  by EP_X0FF
 Fri Nov 30, 2012 12:15 pm
Just if everyone interested.
Encrypted string inside is sureshreddy1.dns05.com. Doesn't respond here.
Code: Select all
sureshreddy1.dns05.com:80 port is closed