warning: fiverr.com hacked

[chatmasta]

www.fiverr.com

malicious redirect to

http://www.fiverr.com/install_flash_player_17_plugin.exe

Obviously, you should not install this.

https seems broken too.

 

[Brandon]

Cool, now I can order a job and update my Flash player at the same time!

 

[(O_o)]

That's pretty crazy. Who's going to decompile this thing? I'm too lazy to do it atm but someone def grew their botnet 5 figures today.

 

[HiGhPeR]

I guess someone bought the "I will hack fiverr for $5" gig

 

[cardine]

That's pretty crazy. Who's going to decompile this thing? I'm too lazy to do it atm but someone def grew their botnet 5 figures today.

It's a variant of the MSIL/Kryptik.BYY Trojan.

 

[(O_o)]

yup yup, looks nasty.

https://www.virustotal.com/en/file/...8a54b5b608d06cfdf88590232da2f1f45cb/analysis/

Current exe incase they repack/crypt/fud it.

install_flash_player_17_plugin.exe
340 KB
https://mega.co.nz/#!nQNylLhb!nHYgSrUCayUcj24uXyJmyPneMSuZk8xZxeueb5WJMUs

 

[chatmasta]

lazy spammers don't even know I'm on a mac

 

[Vadym]

lazy spammers don't even care I'm on a mac

ftfy

 

[matt94gt]

I guess someone bought the "I will hack fiverr for $5" gig

haha

 

[ayzo]

peasant ass hackers can't even fork over the money for an exploit pack they've gotta redirect to a .exe what kind of shit is that