NFL = Nuwar File Link?

Heads-up, there is a another new 'Storm Worm' run in progress. This one is using a new topic; American Football [NFL] as the bait. Which is not one we've seen them use before.

This is what one of the new e-mails look like:



And here is what you'll see if you click on the link:



What you won't see, is that as usual, in the background on a vulnerable system is that your system is being compromised and infected without any need for you to click on the link in the webpage. You are fully patched, aren't you? Even if you are fully patched do not download and run the file offered, as it is malware. Every link on the page is to the malware file, currently named 'tracker.exe'.

More data on the file can be found here: http://momusings.com/vsub/2007/09/vs0709002-possible-new-malware.html

I've submitted the file to the anti-virus vendors, so detection should be near complete within 24 hours.

UPDATE:
According to F-Secure: "What's interesting is that the website they want you to visit doesn't contain exploit code anymore. To become infected you have to click on one of the links or on the picture (they all point to the same file tracker.exe) and run the file. Still, this can change at any moment so don't click on any links you receive in these e-mails. "

I bet that the exploit code will be back soon, as soon as the malware authors responsible find that they are only infecting <50 percent of systems they usually do. Maybe it is some sort of experiment to gauge just how succesful social engineering is on its own?