I received this in my inbox today from YouTube that someone had sent me a message. The URL in the message takes the user through two redirects and then prompts the user to download a file. This files is malware and currently has a low detection rate. Here is the information I’ve gathered. All of the URL’s below are still live so proceed at your own risk.
hxxp://zz.gd/1d7d6a
-> hxxp://sghghdfgh.actionpooses.com/dfhgfhgfh
–> hxxp://actionpooses.com/livenow/live-now.htm
—> hxxp://212.179.35.9/Free-Girls-Cams-Viewer.exe
Free-Girls-Cams-Viewer.exe
Result: 6/36 (16.67%)
MD5: 716adbf47c6fffbd77604be9e9dd7043
VirusTotal
ThreatExpert Analysis
