Dynamoo's Blog

This fake fax leads to a malicious ZIP file: From :    eFax [message@inbound-efax.org] Date :    29 November 2016 at 16:01 Subject :   ...

This fake financial spam comes with a malicious attachment, purporting to come from Ansell Lighting: Subject :     Please find attached...

This fake voicemail spam leads to Locky ransomware and appears to come from within the victim's own domain, but this is just a simple ...

This spam leads to Locky ransomware: Subject :     Important Information From :     Etta Figueroa Date :     Friday, 25 November 2016, ...

This data comes from my trusted usual source, so far I have only seen a single example. This morning's spam run has a subject with o...

This spam purports to come from Michael T Diver who is a real Oklahoma attorney, but it doesn't really and is jut a simple forgery: ...

This spam has no body text and appears to come from within the sender's own domain. It leads to Locky ransomware. For example: From...

This fake financial spam leads to Locky ransomware: Subject :     Please Pay Attention From :     Bill Rivera Date :     Wednesday, 23 ...

This fake financial spam appears to come from a random sender in the victim's own domain, but this is just a simple forgery. The paylo...

This fake financial spam leads to Locky ransomware: Subject :     Delivery status From :     Gilbert Hancock Date :     Tuesday, 22 N...

This fake financial spam leads to malware: From :    billing@secure-lgm.com Date :    21 November 2016 at 18:35 Subject :    Your Log...

I wrote about this evil network on 64.20.51.16/29 (a customer of Interserver, Inc) over a year ago , identifying it as a hotbed of fraud....

This fake financial spam leads to the Trickbot banking trojan. From :    Sage Invoice [service@sage-invoices.com] Date :    17 November...

Microsoft Office 365 offering a tax refund service? Really? No, of course not, it's a phishing scam.. From :    Microsoft Office 36...

This spam has an interestingly malformed subject, however the attachment leads to Locky ransomware: Subject :     Shell Fuel Card E-bil...

This fake financial spam leads to Locky ransomware: From :    Nicole Roman Date :    9 November 2016 at 10:44 Subject :    Account temp...

This fake financial spam leads to Locky ransomware: Subject :     Suspicious movements From :     Marlene Parrish Date :     Tuesday,...

Another terse fake financial spam leading to Locky ransomware: Subject :     Statement From :     accounts@ somedomain.tld Date :    ...

The never-ending Locky ransomware onslaught continues. This fake financial spam has a malicious attachment: Subject :     Financial doc...