|
.B64 files are base 64 MIME files. Virus writers use this combined with a malformed header to exploit Microsoft Security Bulletin (MS01-020) to launch an embedded encoded executable from within IE and Outlook, without your knowledge, and automatically upon receipt. Always scan for MIME data, always scan MIME headers for exploits and always scan .B64 files. .B64 files are not executables, but contain data that becomes an executable by any code that renders HTML (IE and Outlook). Mike -----Original Message----- From: pctech-bounces@xxxxxxxxxxxx [mailto:pctech-bounces@xxxxxxxxxxxx] On Behalf Of David Gibbs Sent: Tuesday, January 17, 2006 9:30 AM To: pctech@xxxxxxxxxxxx Subject: [PCTECH] Bad viruses? Folks: Anyone else experiencing something like this ... I've been receiving a number of messages ... all have spoofed 'from' addresses, and look and feel JUST like a virus trying to replicate itself ... but the attached file is NOT something that can be executed. The attached filename is something like "Original Message.B64". MY mail system isn't mangling the file name ... and there are no other headers that might indicate that an intermediary system is either (there isn't an intermediary in fact). Any thoughts? Thanks! david
As an Amazon Associate we earn from qualifying purchases.
This mailing list archive is Copyright 1997-2024 by midrange.com and David Gibbs as a compilation work. Use of the archive is restricted to research of a business or technical nature. Any other uses are prohibited. Full details are available on our policy page. If you have questions about this, please contact [javascript protected email address].
Operating expenses for this site are earned using the Amazon Associate program and Google Adsense.
midrange.com
