A spam blast released over the weekend invites recipients to see themselves in a YouTube video, but the included link directs them to a website that downloads a package of a dozen different pieces of malware.
According to Exploit Prevention Labs, the link in the spam message looks like a YouTube link, but is to a site that downloads the Q4Rollup package, an encrypted collection of keyloggers, spyware, rootkits and other malware.
Visitors to the site are directed to download software to view the video, at which point the malware is transferred to their PCs.
The storm worm, a Trojan horse that secretly infects PCs and turns them into members of a botnet that attacks other PCs, has been busy of late. First detected in January, the malware has been used in the last few weeks in a confirmation spam scam and has also been leveraged in blogs and web message forums.