Date: Fri, 25 Jan 2013 15:39:33 +0200
Subject: FedEx Billing - Bill Prepared to be Paid
FedEx Billing - Bill Prepared to be Paid
You have a new invoice(s) from FedEx that is prepared for discharge.
The following invoice(s) are ready for your overview:
To pay or overview these invoices, please log in to your FedEx Billing Online account proceeding this link: http://www.fedex.com/us/account/fbo
Note: Please do not use this email to submit payment. This email may not be used as a remittance notice. To pay your invoices, please visit FedEx Billing Online, http://www.fedex.com/us/account/fbo
Please Not try to reply to this message. auto informer system cannot accept incoming mail.
The content of this message is protected by copyright and trademark laws under U.S. and international law.
The malicious payload is at [donotclick]vespaboise.net/detects/invoice_overview.php which is on the very familiar IP address of 220.127.116.11 (Hanaro Telecom, Korea) which has been used in several recent attacks.. blocking it would be prudent.