Spamvertised FedEx notifications lead to malware

A currently ongoing spamvertised campaign is brand-jacking FedEx for malware-serving purposes.

A currently ongoing spamvertised campaign is brand-jacking FedEx for malware-serving purposes.

Sample attachments:FedEx letter.zip; FedEx letter.exe Sample subject: FedEx notification #random number Sample message: Dear customer. The parcel was sent your home address. And it will arrive within 7 business day. More information and the tracking number are attached in document below. Thank you. © FedEx 1995-2011

Upon downloading the executing the attachment, the malware attempts to download  two additional binaries, next to sniffing for FTP credentials off infected hosts.

Detection rate for FedEx letter.exe.

Newsletters

You have been successfully signed up. To sign up for more newsletters or to manage your account, visit the Newsletter Subscription Center.
Subscription failed.
See All