Worm hides as fake Internet Explorer 7 beta download image

News by Dan Kaplan

A new scam email is enticing users to click on a malicious executable file disguised as a bogus image link to download Internet Explorer 7 beta 2.

A new scam email is enticing users to click on a malicious executable file disguised as a bogus image link to download Internet Explorer 7 beta 2.

Researchers at F-Secure determined the file is actually Virus.Win32.Grum.A, but it appears as a real-looking graphic from Microsoft asking users to "download now."

"With this authentic looking image, it might be difficult to see offhand that this is malicious," according to researchers at F-Secure. "Remember to always get your updates from the original developer’s site."

The email arrives with the subject "Internet Explorer 7 Downloads" and appears to originate from admin[at]microsoft.com, a spoofed address, according to Sophos.

The worm attempts to infect executable files referenced by the "run" keys in the Windows registry.

"Worms like this are only succeeding in spreading because so many people have still not learned to be suspicious of unsolicited emails, even if they claim to come from well-known companies like Microsoft," said Graham Cluley, senior technology consultant at Sophos.
Topics:

Find this article useful?

Get more great articles like this in your inbox every lunchtime

Upcoming Events