From: American Express [mailto:AmericanExpress@emalsrv.aexpmail.org]
Sent: 08 July 2013 15:00
Subject: Account Alert: A Payment Was Received
Check your account balance online at any time
________________________________________ View Account
Make a Payment
Manage Alerts Preferences
________________________________________ Check Balance
We received a payment for your Card account.
Mon, Jul 08, 2013
Payments received after 8PM MST may not be credited until the next day. Please allow 24-48 hours for your payment to appear online.
Thank you for your Cardmembership.
American Express Customer Care
Was this e-mail helpful? Please click here to give us your feedback.
If you'd like to stop receiving this alert, simply click here.
Like Us on Facebook
Follow Us on Twitter
Subscribe to our channel
Share with Foursquare friends
| Privacy Statement
| Add us to your address book
Your Cardmember information is included in the upper-right corner to help you recognize this as a customer service e-mail from American Express. To learn more about e-mail security or report a suspicious e-mail, please visit us at americanexpress.com/phishing. We kindly ask you not to reply to this e-mail but instead contact us via customer service.
© 2013 American Express. All rights reserved.
The link in the email goes through a legitimate hacked site to end up on a malicious landing page at [donoclick]americanexpress.com.krasalco.com/news/slightly_some_movie.php (report here) hosted on the following IPs:
220.127.116.11 (Acens Technologies, Spain)
18.104.22.168 (TPL Trakker Ltd, Pakistan)
22.214.171.124 (Novell Inc, US)
126.96.36.199 (Uninet, Thailand)