Close Topic Options

Warning, Virus Name: Osama Bin Laden Captured

I just got this message via email that Osama bin Laden was captured. Unfortunately I clicked on the link.

"Virus name: Osama
bin Laden Captured

Status: Real.

Example: [Collected on the Internet, 2004]


Subject: Osama bin Laden Captured

Hey, Just got this from CNN, Osama Bin Laden has been captured! A video and some pictures have been released. Go to the link below for pictures, I will update the page with the video as soon as I can.


Origins: There are few headlines that would grab the attention of more computer users around the world than "Osama bin Laden Captured," and that's exactly what whoever created this lure was counting on to snare unsuspecting victims who use Microsoft platforms.

"Osama bin Laden Captured" isn't a virus in itself; it's the text of a message that includes a link to a file called EXPLOIT.EXE. When a message recipient clicks on this link to view what he thinks are pictures of Osama bin Laden's capture, he can end up downloading an executable trojan known as Backdoor-AZU, BKDR_LARSLP.A, Download.Trojan, TrojanProxy.Win32.Small.b, or Win32.Slarp.

Clicking the embedded link in the "Osama bin Laden Captured" message auto-executes a file called "EXPLOIT.EXE," which exploits a known security hole to download the trojan. According to McAfee Security:

The trojan opens a random port on the victim's machine. It sends the port information to a webpage at IP address 66.139.77.145. The trojan listens on the open port for instructions and redirects traffic to other IP addresses. Spammers and hackers can take advantage of compromised systems by using the infected computer as a middleman, allowing them to pass information through it and remain anonymous.
Microsoft has made available updates that close the hole exploited by this trojan.

Additional information: Backdoor-AZU
(McAfee Security)


Information found at:

https://www.snopes.com/computer/virus/osama.asp

Edited: dawnofthenew on 16th Jan, 2005 - 6:22pm

Captured Laden Bin Osama Name Virus Warning

Well, now that I am a linux only user, I can actually laugh about something like this, but sometimes I really wonder what these people are thinking? What is there to gain by infecting systems with a virus, trojan or something similar. I suppose they enjoy the short lived frame, right up to the moment they get caught, but sadly, this doesn't happen often enough.

Warning, Virus Name: Osama Bin Laden Captured Gaming Video & Issues Computer

I try to imagine the motivation of a virus maker ( not trojans or worms but a old fashion destroying data virus). Is he/she making it because of the fame among his/her kind or is it something else?

Captured Laden Bin Osama Name Virus Warning

I suppose it fame, I couldn't think of any other reasons...

Some people probably think it's cool that they have the power to make things like that happen.

Captured Laden Bin Osama Name Virus Warning

I have dabbled in hacking, and have attempted to create virii before. I never released anything to the public, but my motivation was: its fun. This may not make sense to other people, but I guess there is just something fun for a few people about being able to create destruction. Maybe it is the irony of it - creating something from nothing, that will turn something into nothing.

Warning, Virus Name: Osama Bin Laden Captured

Virus claiming Bin Laden arrest fools few on Web

SAN FRANCISCO (Reuters) - A new computer virus in e-mails claiming that Osama Bin Laden has been arrested has failed to lure many users to open dangerous attachments, despite its high-profile headline, security software makers said Friday.

The virus began circulating in the past day and is one of several Bin Laden-type viruses that have been distributed on the Internet since May 2004. The current virus has a subject line claiming Bin Laden has been arrested.
Ref. https://www.usatoday.com/tech/2005-06-03-email-virus_x.htm

Warning Virus Name Osama Bin Laden Captured

I never open anything from an unknown source. That's just the rule around here, and it's a good rule! This one would be headed for the "trash" with the rest of my 100+ spam every day.

It's good to know that people are "wising up" about this type of thing.