Threat Research & Response Blog
Aside from the Storm Worm, a new 4th of July malware is currently being spammed around. Below is a sample of the greeting card mail:
Clicking on the link will not lead you to greetings.com but rather to a malware download site with a filename july.exeIt turns out the july.exe is another IRC backdoor and is now detected as Backdoor:Win32/IRCFlood. Upon excution, it will display the following image: Make sure to watch out for this type of mail in your inbox and enjoy the rest of your 4th of July day!
-- Francis and Elda