Spam email: “Is Steve Jobs Really Dead?”. Beware!

News about the death of Steve Jobs has been exploited by cyber-criminals by sending spam emails associated with this incident. The spam email has a subject like “Steve Jobs: Not Dead Yet!“, “Is Steve Jobs Really Dead?“, “Steve Jobs Alive!“, or “Steve Jobs Not Dead!“.

Steve Job - Spam Email - Malware

Clicking on the link provided will take the user to a site that has installed a number of exploits part of BlackHole exploit that will download and execute malware.

Steve Jobs - Spam Email - BlackHole Exploit

When executed, the malware will download other files and in a minute will make the victim’s machine as a spam machine:

Steve Jobs - Spam Emails

Some malicious links provided in the email:

Emsisoft Endpoint Protection: Award-Winning Security Made Simple

Experience effortless next-gen technology. Start Free Trial
http://[censored]sting.info/am.html
http://[censored]yedge.net/noted.html
http://[censored]k.com/during.html
http://[censored]ilter.com.tr/hope.html
http://[censored]cu.com/dead.html
http://[censored]nnanatural.com/camp.html
http://[censored]-host.net/already.html
http://[censored]n.info/Mississippi.html
http://[censored]smaket.com/stone.html
http://[censored]rhotel.com/mill.html
http://[censored]ilthung.com/stems.html
http://[censored]llow.com/exact.html
http://[censored]tars.net/ten.html
http://[censored]hange.com/made.html
http://[censored]readingschedule.com/drive.html
http://[censored]ddy247events.co.za/Betsy.html
http://[censored]sinteract.com/arrangement.html
http://[censored]aservic.com/occasionally.html
http://[censored]ndtripp.com/improve.html

Currently the detection rate is very low, only 3 of 43 antivirus able to detect this malware. Emsisoft Anti-Malware detects this malware as Trojan.Win32.Spambot.

Arief Prabowo

What to read next