BE WARNED! ICS Virus!

**Manchunian** · 09-13-2008

Hello!

I just wanted to alert everyone that I received a bogus email this morning from the ICS monitoring team. I was suspicious because there were lots of English mistakes, because the return address was oddie69j@jcresearch.com, and also because I couldn't see why I would be a target of such a letter

. The email contains an executable, which I opened using Wine, to see if it would work (yes, I did do this on purpose! I was quite prepared to re-install my system if necessary!), but it produces the following error:

Code:

err:seh:setup_exception_record stack overflow 348 bytes in thread 0009 eip 0040dd12 esp 002411d4 stack 0x240000-0x241000-0x340000

However, if you run this file on a Windows machine, you will be infected with a root kit virus. Here is the message:

Your internet access is going to get suspended

The Internet Service Provider Consorcium was made to protect the rights of software authors, artists.
We conduct regular wiretapping on our networks, to monitor criminal acts.

We are aware of your illegal activities on the internet wich were originating from

You can check the report of your activities in the past 6 month that we have attached. We strongly advise you to stop your activities regarding the illegal downloading of copyrighted material of your internet access will be suspended.

Sincerely
ICS Monitoring Team

**jayd512** · 09-13-2008

Thanks for the heads up, Manchunian!

I feel pretty safe now-a-days (Finally Windows free

), but having this type of info is still a good thing to be able to pass on to friends and family.

Thanks again!!!

**Manchunian** · 09-13-2008

Nice to hear from you again jayd. I'm afraid I've been very absent from Linux Forums for the past few weeks as work is taking over my life!! Have I been missing anything?
Yeah, I agree: it's important to report this sort of stuff - it's the only way to beat these bastards! I might send an email to the return address.

***Dapper Dan*** · 09-13-2008

It's just not fair. All the Windows users get to have all the fun. Even with wine, we can't get the same horrific effects of the viruses they get to contend with.

**Manchunian** · 09-13-2008

I know! I mean, I was actually asking for it! I still didn't get infected!

**i92guboj** · 09-14-2008

Originally Posted by Manchunian

I know! I mean, I was actually asking for it! I still didn't get infected!

However, next time I'd use wine under an alternative, empty, user account

If you feel that deceived you could try to run it under ReactOS, or if you own a legal copy of windows you can install it on a virtual machine

**Manchunian** · 09-14-2008

i92guboj - you're absolutely right! That was stupid of me not to think of that!

**i92guboj** · 09-14-2008

Originally Posted by Manchunian

i92guboj - you're absolutely right! That was stupid of me not to think of that!

Nah hehe, it's always in the easiest thing where we fail. After all, we're just humans

Most times it's social engineering and simple errors which compromise a machine, that is, assuming that your OS is sane enough.

Cheers

Thread Tools

Display

BE WARNED! ICS Virus!

Posting Permissions