Sobjer.J - New Variant to closely monitor
Almost every variant of the Sober worm has went medium, so we should watch developments carefully, as it's a highly advanced virus. The social engineering approach used here could cause this virus to spread. Sober.J - New variant for the watchlist http://secunia.com/virus_information/15006/sober-j/ http://www.f-secure.com/v-descs/sober_j.shtml http://www.trendmicro.com/vinfo/virusencyclo/default5.asp?VName=WORM%5FSOBER%2EJ http://www.sophos.com/virusinfo/analyses/w32soberj.html FORMAT OF INFECTED EMAIL MESSAGES Subject: I've got YOUR email on my account!!
Body: Hello, First, Sorry for my very bad English! Someone send your private mails on my email account! I think it's an Mail-Provider or SMTP error. Normally, I delete such emails immediately, but in the mail-text is a name & adress. I think it's your name and adress. The sender of this mails is in the text file, too. In the last 8 days i've got 7 mails in my mail-box, but the recipient are you, not me. lol OK, I've copied all email text in the Windows Text-Editor and i've zipped the text file with WinZip.
Attachment: email_text.zip