Another day, another fake Fax spam with a malicious payload:
Date: Fri, 31 Jan 2014 10:00:23 +0000 [05:00:23 EST]
From: Windsor Telecom Fax2Email [no-reply@windsor-telecom.co.uk]
Subject: Fax Message on 08983092722 from
FAX MESSAGEYou have received a fax on your fax number: 08983092722 from.The fax is
attached to this email.PLEASE DO NOT REPLY BACK TO THIS MESSAGE.
Attached is an archive file
FAX MESSAGE.ZIP which in turn contains a malicious executable
FAX MESSAGE.EXE with a VirusTotal detection rate of
4/50. Well, I
say malicious but both
Malwr and
Anubis report that the payload does not execute properly, however that might just be an issue with those particular sandboxes and it does
not mean that it will fail to run on all systems.
No comments:
Post a Comment