What type of malware or spam link is this?
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 What type of malware or spam link is this? I write it separated in two lines to defang it. Does it ring? http://anvietfood.com.vn/ .well-known/pki-validation/index_copy/uu_get_status.php?ten=twba10xcvsy5a20x&instead=capital&send=grass I got it in an email passing to come from a friend, with an https://j.mp (aka https://bitly.com/) link that expands to the above. (the trick to expand without opening is appending a "+" to the address, at least on bitly) - -- Cheers Carlos E. R. (from 15.2 x86_64 at Telcontar) -----BEGIN PGP SIGNATURE----- iHoEARECADoWIQQZEb51mJKK1KpcU/W1MxgcbY1H1QUCYIRpcxwccm9iaW4ubGlz dGFzQHRlbGVmb25pY2EubmV0AAoJELUzGBxtjUfVeLsAn2BHqwGUxm6+XGDMQUO6 QT/KLDqGAKCJzUlv+BN12DM6nNTApbotmiS+fQ== =um32 -----END PGP SIGNATURE-----
On 2021-04-24 20:54, Carlos E. R. wrote:
What type of malware or spam link is this?
It seems to be 404 now. Probably already gone. I normally use something like this to expand the link step by step. I increase the max-redirect by 1 to check each step manually. wget --max-redirect=0 -U "Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)" <your_link> I also use https://www.virustotal.com/ to analyze the file/link. -- /bengan
On 24/04/2021 23.36, Bengt Gördén wrote:
On 2021-04-24 20:54, Carlos E. R. wrote:
What type of malware or spam link is this?
It seems to be 404 now. Probably already gone.
I normally use something like this to expand the link step by step. I increase the max-redirect by 1 to check each step manually.
wget --max-redirect=0 -U "Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)" <your_link>
I also use https://www.virustotal.com/ to analyze the file/link.
Ah! I like that analyzer link; I just used it and it says that "1 security vendor flagged this URL as malicious" (G-Data - Malware, suspicious). And that it gives a 404 now. It is an easy check to do, thanks for the link :-) -- Cheers / Saludos, Carlos E. R. (from 15.2 x86_64 at Telcontar)
participants (2)
-
Bengt Gördén -
Carlos E. R.