I've recently received a malware sample .
Spreading mechanisms: you receive a chat message from an skype contact saying (in spanish)
"esta es una foto muy amable de tu parte "
(It's gramatically correct but it doesn't sound natural in spanish)
And the the following URL:
In fact parameters are irelevant.
Independently to the parameters it allways expands to:
The malware comes into a ZIP file and inside the EXE named: fotos_facebook-20052013-png.exe
Here you have the sample.
Right now it's almost undetected in virustotal (3/47).
I'm not good at reverse engineering and deep malware analysis, but I've used malwr.com to do a dynamic analysis (https://malwr.com/analysis/ZDdkOWViY2Qy ... TJjZTU5N2E
Obviously it's nothing good. It tries to contact hXXp://r.gigaionjumbie.biz/images/gx.php
Is it a known malware?
You do not have the required permissions to view the files attached to this post.