Undetected Sample

I just received this sample by email. It's not detected by BitDefender. Other AV vendors detect it as Feebs family worm.


Password is "infected".


Best regards

/applications/core/interface/file/attachment.php?id=821" data-fileid="821" rel="">document.zip

Comments

  • The dropped executable (the html code is basically a dropper which creates an executable file and runs it) is detected as Worm.Feebs.DW. We are working on adding detection for the web page also.