Author Topic: received a "file0.txt" (Read 6867 times)

silenthunder · « **on:** February 16, 2013, 01:08:49 am »

On facebook someone sent me from a blank email address no message but a 26kb file labeled "text0.txt". I cant open it on ios and im afraid of what will happen if i attempt it on winblows.. What should i do with it?

relax · « **Reply #1 on:** February 16, 2013, 01:13:58 am »

Quote from: silenthunder on February 16, 2013, 01:08:49 am

On facebook someone sent me from a blank email address no message but a 26kb file labeled "text0.txt". I cant open it on ios and im afraid of what will happen if i attempt it on winblows.. What should i do with it?

open it in a VM...

kenjoe41 · « **Reply #2 on:** February 16, 2013, 01:18:02 am »

malware is so popular in .txt .doc .pdf. Open it in a virtual environment or sandbox. There your 60% sure your safe.

techb · « **Reply #3 on:** February 16, 2013, 01:19:33 am »

Also make sure your not hiding file extentions. I've fooled people by doing something like README.txt.exe

Also how could a .txt be infected? It is just a simple io buffer of sorts. If anything, notepad or something would be infected. I know of .pdf and .doc's but never a .txt

And if you don't have a VM, use a hexeditor.

silenthunder · « **Reply #4 on:** February 16, 2013, 06:00:03 am »

Quote from: techb on February 16, 2013, 01:19:33 am

Also make sure your not hiding file extentions. I've fooled people by doing something like README.txt.exe

Also how could a .txt be infected? It is just a simple io buffer of sorts. If anything, notepad or something would be infected. I know of .pdf and .doc's but never a .txt

And if you don't have a VM, use a hexeditor.

I opened the message on my laptop, can't open the file because "this message has been marked as abusive/spam", but I saw that there was a phone number there with a local area code, so I texted it. turned out to be a friend that lives a few hours away trying to post to my wall on facebook but accidentally sent me some kinda text file. CASE CLOSED XD

Axon · « **Reply #5 on:** February 16, 2013, 06:06:53 am »

Quote from: techb on February 16, 2013, 01:19:33 am

Also make sure your not hiding file extentions. I've fooled people by doing something like README.txt.exe

Also how could a .txt be infected? It is just a simple io buffer of sorts. If anything, notepad or something would be infected. I know of .pdf and .doc's but never a .txt

And if you don't have a VM, use a hexeditor.

Yes I was thinking the same, txt files could not be infected. I would say open it in a linux environment, it's much safer. Gedit can open txt files, and if you are so paranoid then simply delete the file.

silenthunder · « **Reply #6 on:** February 16, 2013, 06:11:24 am »

Quote from: Axon on February 16, 2013, 06:06:53 am

Yes I was thinking the same, txt files could not be infected. I would say open it in a linux environment, it's much safer. Gedit can open txt files, and if you are so paranoid then simply delete the file.

It's not that I was paranoid, more like interested. I wanted to see what it was and what it was made of.

Axon · « **Reply #7 on:** February 16, 2013, 06:17:01 am »

Quote from: silenthunder on February 16, 2013, 06:11:24 am

It's not that I was paranoid, more like interested. I wanted to see what it was and what it was made of.

Then use Linux to check the file. Before you do that. Have you tried tracing the source of the email, check the email header and see if you can find some info.

silenthunder · « **Reply #8 on:** February 16, 2013, 06:19:43 am »

Quote from: Axon on February 16, 2013, 06:17:01 am

Then use Linux to check the file. Before you do that. Have you tried tracing the source of the email, check the email header and see if you can find some info.

I was at work when I received it and I was using iOS. When I got home it was too late to do any of this, and also unnecessary because the phone number was there for me to text.

s3my0n · « **Reply #9 on:** February 16, 2013, 07:08:12 am »

You don't even need anything special to open a text file ... If in windows just do: type file.txt in cmd.exe to see its contents.

kenjoe41 · « **Reply #10 on:** February 16, 2013, 09:00:27 am »

Quote from: silenthunder on February 16, 2013, 06:11:24 am

It's not that I was paranoid, more like interested. I wanted to see what it was and what it was made of.

do you smell the sweet scent of social engineering. Always be paranoid even with the one you share a bed, they all feed on our weakness and love.

Superflu0usRoot · « **Reply #11 on:** February 16, 2013, 07:49:38 pm »

Two simple ways to find out:

an online service such as:
http://textuploader.com/?p=7

or in a linux environment (if you really want, use someone elses linux environment, and wget the file) do a:

Code: [Select]

cat file0.txt
I'm sure it IS possible to create an exploit using cat (anything is possible) though I haven't seen it and it would be a VERY specialized attack.

silenthunder · « **Reply #12 on:** February 16, 2013, 08:06:31 pm »

Quote from: kenjoe41 on February 16, 2013, 09:00:27 am

do you smell the sweet scent of social engineering. Always be paranoid even with the one you share a bed, they all feed on our weakness and love.

Being paranoid and being careful are 2 different things. A great social engineer has no need to be paranoid

lucid · « **Reply #13 on:** February 17, 2013, 08:07:33 am »

Quote from: silenthunder on February 16, 2013, 06:00:03 am

CASE CLOSED XD

Lol

EvilZone

News:

Author Topic: received a "file0.txt" (Read 6867 times)

silenthunder

received a "file0.txt"

relax

Re: received a "file0.txt"

kenjoe41

Re: received a "file0.txt"

techb

Re: received a "file0.txt"

silenthunder

Re: received a "file0.txt"

Axon

Re: received a "file0.txt"

silenthunder

Re: received a "file0.txt"

Axon

Re: received a "file0.txt"

silenthunder

Re: received a "file0.txt"

s3my0n

Re: received a "file0.txt"

kenjoe41

Re: received a "file0.txt"

Superflu0usRoot

Re: received a "file0.txt"

silenthunder

Re: received a "file0.txt"

lucid

Re: received a "file0.txt"