QUOTE
AVOID THESE EMAIL MESSAGES
Subject: (any of the following)
• You have successfully updated your password
• Your new account password is approved
• Your password has been successfully updated
• Your password has been updated
Message body: Varies
Attachment: (any of the following with EXE and other extensions)
• accepted-password
• account-password
• approved-password
• email-password
• new-password
• password
• updated-password
Subject: (any of the following)
• You have successfully updated your password
• Your new account password is approved
• Your password has been successfully updated
• Your password has been updated
Message body: Varies
Attachment: (any of the following with EXE and other extensions)
• accepted-password
• account-password
• approved-password
• email-password
• new-password
• password
• updated-password
More information can be found as follows:
Recent new Mytob variants
http://secunia.com/virus_information/28516/mytob.pz/
http://secunia.com/virus_information/28515/mytob.pj/
http://www.sophos.com/virusinfo/analyses/w32mytobhj.html
http://www.viruslist.com/en/alert?alertid=184538968
http://www.viruslist.com/en/viruses/encycl...?virusid=118626
Kapersky Weblog -- New Mytob becoming prevalent
http://www.viruslist.com/en/weblog?calendar=2006-04
Some new Mytob variants are showing up in the top 10
http://myavert.avertlabs.com/myavert/default.aspx
http://www.virustotal.com/en/indexf.html
http://www.fortinet.com/FortiGuardCenter/g...reat_stats.html