How bad the Cutwail and other SpamBot can fool (spoof) us?

As per title says, the answer is VERY bad and nasty. I took my bitter pill by analyzing this case, it is important for sharing this information since there are very lack of these in the internet, so I dare myself to write this analysis experience. Yesterday we came into a spam malvertisement of login credential stealer (Trojan Win32/Fareit) which looks like sent from an infected PC in a local network of US’s Department of Defense, and also looks relayed via their email sever.

You can see is a common spam of malware campaign, inside of the ZIP file there is an executable PE file which actually a Trojan Win32/Fareit, an FTP, FileZilla, Browser, Remote Directory, Email and Faceook’s login credential stealer.

SOURCE: malwaremustdie.blogspot.co.uk

Information Security Buzz