134). SunTrust Banks, Inc. - HTML.Phishing.Bank-359
This email targets customers of SunTrust Banks, Inc..
Message Details
| Malware Name: | HTML.Phishing.Bank-359 |
| Origin: |  Brazil |
| Date first seen: | 16/07/2006 00:40:54 |
| From: | SunTrust@lua.piernet.com.br, Banks@lua.piernet.com.br, |
| Subject: | Confirm Your Account Details. |
Attacker's URLs
The following table shows the details of the URLs used by the attacker. These could either be the fake website of the attack, or a site which redirects to the attackers fake site. Sometimes the attacker will use an additional site for hosting resources such as images.
The table shows the current status of the site: if it is still reachable (
), or if it has been shut down (
). If the site has not been confirmed as a phishing site it is shown with the symbol 
. The time when the site was first observed is shown, together with the time that the site was shut down, if applicable. Do not visit the attackers site as it may contain malware. You can get more details on the site by clicking on the 
symbol.
| Status | First observed | Shut Down | Internet Address | URL | |
|---|---|---|---|---|---|
|
09/08/2006 10:30:20 |  198.66.203.3 |
http://paradigm-360.com/update/index.html | |
|
|
05/08/2006 18:48:05 |  213.155.151.88 |
http://www.atlantafalcons.com/uploads/photos/perm/main/CEGDLJLBLNAA/Logo_suntrust.gif | |
|
|
05/08/2006 18:48:05 |  81.176.64.222 |
http://www.tele-sputnik.ru/suntrust/login.html | |
Message Text
The text below shows the message content, rendered in a safe way. It does not show images or HTML formatting, but the text is the same as that contained in the phishing email. Each clickable link is shown as a reference. You can see the way the URL is presented in the main body of the text, while the actual URL activated by the link is shown below the main body.
SunTrust Banks, Inc
Dear Valued Customer
Our technical service department has recently updated our online banking
software, and due to software upgrade we kindly ask you to follow the
reference given below to confirm your membership details. Failure to confirm
your membership details will suspend you from accessing your banking online.
[1]https://www.suntrust.com/portal/server.pt?control=USERID
SunTrust Banks, Inc
Security Advisor
SunTrust Banks, Inc
_________________________________________________________________
Please do not reply to this e-mail. Mail sent to this address cannot be
answered.
For assistance, log in to your SunTrust Banks, Inc account and choose the
"Help" link on any page.
SunTrust Email ID # 54793
References
1. http://www.tele-sputnik.ru/suntrust/login.html