Author Topic: MP3 Malware?  (Read 3421 times)

0 Members and 1 Guest are viewing this topic.

January 02, 2011, 01:08:33 pm
Read 3421 times

redwolfe_98

  • Special Members
  • Jr. Member

  • Offline
  • *

  • 21
i have noticed some malware-files that have the MP3 extension.. so, how does that work, when the file has an MP3 extension?

if i execute the files, since MP3 files are associated with my media player, will my media player just report that it cannot run the file?

here are some links for some samples:

hXXp://www.pucsp2011.com/monge/bonekr.mp3

hXXp://www.pucsp2011.com/monge/cadleo.mp3

hXXp://www.pucsp2011.com/monge/arlodke.mp3

i am not setup for testing to see what would happen if i run the files..

i am attaching one sample that i downloaded.. the password for the zipped file is "infected"


January 02, 2011, 01:51:04 pm
Reply #1

MAD

  • Special Members
  • Sr. Member

  • Offline
  • *

  • 171
  • Personal Text
    Malware Analyst
@redwolfe_98 : Will my media player just report that it cannot run the file ?
Yes, the program should verify the file format.
pinpin sayz: All ur PE's bel0ng 2 Us

January 03, 2011, 09:28:34 am
Reply #2

Kensley

  • Newbie

  • Offline
  • *

  • 5
Vulnerability in Microsoft MPEG Layer-3 Codecs Could Allow Remote Code Execution (2115168)
http://www.microsoft.com/technet/security/bulletin/ms10-052.mspx