Threat Level: green Handler on Duty: Guy Bruneau

SANS ISC: (Another) AOL Pwstealer SANS ISC InfoSec Forums

Watch ISC TV. Great for NOCs, SOCs and Living Rooms: https://isctv.sans.edu

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
(Another) AOL Pwstealer

Just a quick note about (another) one password stealer that we received today, focused on AOL. This one is not detected by any AV on Virustotal yet, althougth after I sent it to my personal AV list, some already answered that it will be included in the next signature's release.
This one had theĀ  name of new_pict.exe , maybe trying to fool the person to click on an attachment file.

If you run this file you will get this screen asking for a screen name and password.

------------------------------------------------
Pedro Bueno ( pbueno //%// isc. sans. org)

Pedro

155 Posts
ISC Handler
Oct 31st 2005

Sign Up for Free or Log In to start participating in the conversation!