Targeted Email Attacks

This blog provides examples of socially engineered and/or specifically targeted spear phishing emails, intended to spread trojans and malware. These examples are generally focused on the China/Taiwan analyst community in Washington, D.C. (More Background)

October 12 - Malicious Excel File from Fake Air Force Sender

This is pretty sloppy. Who, in this day and age, would just open a mystery Excel spreadsheet sent in a blank email from some random Wright-Patterson Air Force Base email? But it’s definitely from one of the same groups that have been sending us better targeted stuff for a while - I think I’ve seen that “IBM111” computer before. The attached .xls file has only a 14% detection rate (6/43) on VirusTotal.

Email Subject: 20111012
MD5: 5fd848000d68f45271a0e1abd5844493
Originating IP: 60.249.219.82

12 notes Source: lottaworld.com #air force #attachment #military #sloppy #xls #IBM111