This fake Amazon spam has a malicious attachment:
Date: Wed, 2 Jul 2014 03:33:39 -0800 [07:33:39 EDT]
From: "Amazon.com"
Subject: Order Details
National AmazonLocal.com
Good day,
Thank you for your order. We’ll let you know once your item(s) have dispatched.You can view the status of your order or make changes to it by visiting Your Orders on Amazon.com.
Order Details
Order R:121218 Placed on May 28, 2014
Order details and invoice in attached file.
Need to make changes to your order? Visit our Help page for more information and video guides.
We hope to see you again soon. Amazon.com
Attached is a file
order_id.zip which in turn contains the malicious executable
order_id_467832647826378462387462837.exe which is detected as malicious by
5/54 engines of VirusTotal. Automated analysis tools are inconclusive about what this malware does.
[1] [2]
No comments:
Post a Comment