A currently spamertised malware campaign is enticing end users into downloading and executing a malicious attachment.
Sample subject: Reqest rejected Sample message: "Dear Sirs, Thank you for your letter! Unfortunately we can not confirm your request! More information attached in document below. Thank you Best regards." Sample attachments: EX-38463.pdf.zip; EX-38463.pdf.exe
Upon execution the binary downloads additional files, in this case a scareware variant. Detection rate for TrojanDownloader:Win32/Chepvil.J.
- Spamvertised Post Office Express Mail (USPS) emails lead to malware
- Spamvertised DHL notifications lead to malware
- The Ultimate Guide to Scareware Protection