This fake Staples spam has a malicious attachment:
Date: Wed, 15 Jan 2014 15:40:44 +0800 [02:40:44 EST]
From: Staples Advantage Orders [Order@staplesadvantage.com]
Subject: Your order is awaiting verification!
Order Status: Awaiting verification
Order #: 5079728
Your order has been submitted and is awaiting verification from you.
Order #: 5079728
Order Date and Eastern Time: 2/19/2013 12:28 PM
Order Total: $152.46
This is potentially due to missing or invalid order or payment information. If you receive this status message, please call Customer Service immediately for assistance.
For Staples Advantage Support, call 1-800-633-6080 or email Support@staplesadvantage.com.
Attached is a ZIP file
Order_5079728.zip which in turn contains a malicious executable
Order_{_partorderb}.exe which has a VirusTotal detection rate of
23/47. The
Malwr report is pretty inconclusive, so presumably the binary is hardened against automated analysis tools.
No comments:
Post a Comment