setup_1096_MTE1NXwzNXww_.exe is a malware sample from hxxp://www.bestantivirus2009.com, which no longer exists, but may come back anytime. CIMA reports that this file is not suspicious, but in fact it is a fake security app. I can PM the sample if you wish.
The file was submitted last night with “CIMA FALSE NEGATIVE…” in the subject line.
Baskar, please have a look at this page:
-Removed by 3xist for Safety Reasons of our users-
This page has a list of recently discovered malware sites. Look for sites like “anti-spyware-this” or “anti-virus-that” and you can download and test the very latest malware samples. This list is updated several times a day.
I have just PMed the link to Baskar. Please be advised that I do not intend to submit many malware files for analysis. I think the researchers should be “proactive” at finding samples.
But there are still plenty of live ones left and more are being added to “hphosts-partial” list every day. I spend a lot of time looking for those sites and making sure they get added to that list.