phishing question

[chris.blazek at gmail.com (Chris Blazek)]

Cool! Thanks alot guys!

Chris

On Thu, Dec 3, 2009 at 8:32 AM, Robert Portvliet <robert.portvliet at gmail.com
> wrote:

> If you guys are interesting in learning a fair bit about malware
> analysis, check out Tom Liston's 'Follow the Bouncing Malware, Live'
> talk\workshop from ChicagoCon 2007.
>
> It's 90 minutes long & full of all sorts of good info...
>
> http://www.chicagocon.com/medialab/2007-evening-presentation-files.html
>
>
>
> On Tue, Dec 1, 2009 at 3:54 PM, Chris Blazek <chris.blazek at gmail.com>
> wrote:
> > A coworker clicked on a link in an email and was directed to facebook
> then
> > redirected to the following site: despatiesmercemerce . blogspot . com
> > All of there fb contacts then received the same email. I pulled up the
> site
> > in malzilla and noticed a script block in the header that looks like it's
> > obfuscated.
> >
> > I was wondering if someone in the group could figure out what the site
> was
> > trying to do.
> >
> > Thanks,
> > Chris
> >
> >
> >
> > _______________________________________________
> > Pauldotcom mailing list
> > Pauldotcom at mail.pauldotcom.com
> > http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom
> > Main Web Site: http://pauldotcom.com
> _______________________________________________
> Pauldotcom mailing list
> Pauldotcom at mail.pauldotcom.com
> http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom
> Main Web Site: http://pauldotcom.com



-- 
http://www.kingbin.net/
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://mail.pauldotcom.com/pipermail/pauldotcom/attachments/20091203/bc780338/attachment.htm