Solved.
Kudos1 Stats

New Drop Box Hacking Tool - Submit URLs To Norton?

Posted: 12-Jul-2022 | 12:39AM · Edited: 12-Jul-2022 | 12:43AM · 14 Replies ·

Due to a lapse in common sense malware self-protection practice, my email account was hacked on July 1st and used to send covert malware links via Drop Box linked emails from my email account. That has been stopped by PW change and running System Restore back in time before July 1st to remove any possible malware that might have been planted in my Windows 10 OS. All email contacts have been notified. Would Norton be interested in my sending two URLs linked to this malware for analysis and detection? I just loaded the URLs into https://www.virustotal.com/old-browsers/home/url and received the following results. Virus Total links to 87 Malware detection companies like Sophos, Kaspersky, ESET, etc. who analyze and report potential threats. This is new malware, so not many have provided protection for it yet. Norton is not one of the 87. OUgrad URL#1 CMC Threat Intelligence malicious - CRDF malicious - alphaMountain.ai malicious - Seclookup malicious - CyRadar malicious - Emsisoft malicious - Avira malicious - Antiy-AVL malicious - Netcraft malicious - Phishing Database malicious - ESET malicious URL#2 Seclookup malicious - Trustwave malicious - Emsisoft malicious - Netcraft malicious - ESET malicious

Labels: Auto-Protect, Customer Support Feedback, Real Time Threat Protection, Threat Detection, Windows 10
Accepted Solution
Kudos0

Re: New Drop Box Hacking Tool - Submit URLs To Norton?

Posted: 18-Jul-2022 | 12:20AM · Permalink

I received the 2 suspicious URLs from @OUgrad. We have already detected the URLs as malicious.

View Accepted Solution in Context

Replies

Kudos0

Re: New Drop Box Hacking Tool - Submit URLs To Norton?

Posted: 12-Jul-2022 | 3:07AM · Permalink

Thank you for the info and good work to minimize the damage. 

Kudos0

Re: New Drop Box Hacking Tool - Submit URLs To Norton?

Posted: 12-Jul-2022 | 6:04AM · Permalink

Please ask Norton if they want the two URLs above and where to send if not here. It's hard to read the above because Norton will not allow separate paragraphs with the Safari Browser in iPhones. I even tried to Edit them in. They need to fix that too. OUgrad
Kudos0

Re: New Drop Box Hacking Tool - Submit URLs To Norton?

Posted: 12-Jul-2022 | 6:10AM · Permalink

I have notified a moderator to look at this post and your request for Norton to receive the URLs.

Kudos0

Re: New Drop Box Hacking Tool - Submit URLs To Norton?

Posted: 12-Jul-2022 | 4:33PM · Permalink

Thanks! OUgrad
Kudos0

Re: New Drop Box Hacking Tool - Submit URLs To Norton?

Posted: 13-Jul-2022 | 12:51PM · Permalink

Hello @OUgrad,

We can review the samples after you submit them on the samples submission portal https://submit.norton.com/?type=FN.

If you manage to copy the submission ID you will receive at the end of the submission process and post it in your response here, this can make the review process even better.

Kudos0

Re: New Drop Box Hacking Tool - Submit URLs To Norton?

Posted: 14-Jul-2022 | 12:49AM · Permalink

I received the following error message after clicking submit. Submission failed URL submissions require the file to be available without any username / password It must be a direct download URL Please make sure all fields are correct and that the file is not larger than 90MB An email ID and PW is required to trigger the hacking tool or key logger for use by the hacker. Other AV Companies like ESET detect as malware the URL that I tried to submit. OUgrad
Kudos0

Re: New Drop Box Hacking Tool - Submit URLs To Norton?

Posted: 14-Jul-2022 | 1:08AM · Permalink

Why not simply enter a bogus Yahoo email ID and PW to expose and capture the hacking tool? OUgrad
Kudos0

Re: New Drop Box Hacking Tool - Submit URLs To Norton?

Posted: 14-Jul-2022 | 1:35AM · Permalink

Hi @OUgrad,

Regarding the failed submission please see the private message I sent you here on the forum.

Accepted Solution
Kudos0

Re: New Drop Box Hacking Tool - Submit URLs To Norton?

Posted: 18-Jul-2022 | 12:20AM · Permalink

I received the 2 suspicious URLs from @OUgrad. We have already detected the URLs as malicious.

Kudos0

Re: New Drop Box Hacking Tool - Submit URLs To Norton?

Posted: 18-Jul-2022 | 9:33AM · Permalink

Correct me if I'm wrong, but Norton Safe Web must be enabled in your Browser to detect. I would hope that Norton 360 alone would detect. Can Norton Safe Web be added to the Safari Browser in iPhones? OUgrad
Kudos0

Re: New Drop Box Hacking Tool - Submit URLs To Norton?

Posted: 20-Jul-2022 | 1:11PM · Permalink

There is no malware protection in Norton 360 on an IOS device. See this article from howtogeek . com for an explanation of why it is not necessary.

https://www.howtogeek.com/352613/what%E2%80%99s-the-best-antivirus-for-iphone-none/

Kudos0

Re: New Drop Box Hacking Tool - Submit URLs To Norton?

Posted: 20-Jul-2022 | 1:42PM · Edited: 20-Jul-2022 | 1:43PM · Permalink

Thanks peterweb. What about Norton 360 alone without Safe Web enabled in PC Browsers as in this case above? OUgrad

Kudos0

Re: New Drop Box Hacking Tool - Submit URLs To Norton?

Posted: 20-Jul-2022 | 3:37PM · Permalink

If you did have Safe Web turned off, the other layers of protection would protect you if something did try to access your computer from a browser. Safe Web just warns you about possible malicious sites before you actually load those sites.

Kudos0

Re: New Drop Box Hacking Tool - Submit URLs To Norton?

Posted: 20-Jul-2022 | 7:45PM · Edited: 20-Jul-2022 | 7:49PM · Permalink

Thanks Permalink. In my case this was very new malware as demonstrated by virustotal.com detections over time. The link I submitted from my PC had a small number of detections among the 87 anti-malware companies linked to virustotal at first, then more as time wore on. The other forwarded link I submitted from a friend had fewer detections than my link initially, but over time both links had the same detection level. My PC had Norton 360 up-to-date and Safe Web enabled. Since my up-to-date iPhone was impervious to this infection on or before July 1st when infected, perhaps very few or none had yet detected it including Norton. OUgrad

This thread is closed from further comment. Please visit the forum to start a new thread.