Date: Fri, 6 Sep 2013 11:30:57 -0600 [13:30:57 EDT]
From: CNN [BreakingNews@mail.cnn.com]
Subject: CNN: "The United States began bombing"
The United States began bombing!
By Casey Wian, CNN
updated 9:01 AM EDT, Wed August 14, 2013
(CNN) -- Pentagon officials said that the United States launched the first strikes against Syria. It was dropped about 15 bomn on stalitsu syria Damascus. Full story >>
Rescuing Hannah Anderson
Sushmita Banerjee was kidnapped and killed in Afghanistan, police say
No one has claimed responsibility for her death, but police suspect militants
Banerjee wrote "A Kabuliwala's Bengali Wife" about her escape from the Taliban
The link in the email is meant to go to [donotclick]senior-tek.com/tenth/index.html but the "Full story" link has a typo in and goes to senior-tekcom/tenth/index.html (without the dot) instead which obviously fails. This site then tries to load these three scripts:
From there the visitor is sent to a malicious payload at [donotclick]luggagepreview.com/topic/able_disturb_planning.php which is a hacked GoDaddy domain hosted on 18.104.22.168 (DirectSpace LLC, US) along with several other hijacked domains listed below in italics.