Spamvertised Post Office Express Mail (USPS) emails lead to malware

Spamvertised Post Office Express Mail (USPS) emails lead to malware

Summary: A currently spamvertised malware campaign is brand-jacking the USPS in an attempt to trick users into downloading and executing a malicious file.

SHARE:
TOPICS: Malware, Security
9

A currently spamvertised malware campaign is brand-jacking the USPS in an attempt to trick users into downloading and executing a malicious file.

Sample subject: Post Express Information. Your package is available for pick up. NR[random number]

Sample attachment: Post_Express_Label_ID_[random number].zip; Post_Express_Label.exe

Sample message: Dear client Email notice number.[random number]. Your package has been returned to the Post Express office. The reason of the return is "Error in the delivery address" Important message! Attached to the letter mailing label contains the details of the package delivery. You have to print mailing label, and come in the Post Express office in order to receive the packages! Thank you for using our services. Post Express Support.

Users are advised to avoid interacting with suspicious file attachments.

Topics: Malware, Security

Dancho Danchev

About Dancho Danchev

Dancho Danchev is an independent security consultant and cyber threats analyst, with extensive experience in open source intelligence gathering, malware and cybercrime incident response.

Kick off your day with ZDNet's daily email newsletter. It's the freshest tech news and opinion, served hot. Get it.

Talkback

9 comments
Log in or register to join the discussion
  • Thanks

    I will share this info via my Facebook Business page and even on my private page.
    bobiroc
  • RE: Spamvertised Post Office Express Mail (USPS) emails lead to malware

    The illiterate English should be one major clue here.
    rspiewak@...
  • RE: Spamvertised Post Office Express Mail (USPS) emails lead to malware

    I got those e-mails months ago. I hate it when I get those spamvertised e-mails. I would recommend both blocking the recipients e-mail address and getting a better Anti-Virus, or Internet Security Suite* (recommended for the most protection online and offline)

    *Trend Micro recommended by both my dad and I.
    ben_ben2
  • RE: Spamvertised Post Office Express Mail (USPS) emails lead to malware

    As a USPS Letter Carrier, mail man as most people call us, I can safely say that we don't have your email address to tell you that your package was brought back to the office. The only way we have access to your email address is if you provide it to us for a vacation hold or change of address and even then it is just for that reason, not stored or even kept for any other reason. We have peach/pink colored forms (PS 3849) that will be left with your mail that says something was attempted for a delivery, but you were not home and a signature or responsible adult is needed. Those forms state that you can pick them up at your local Post Office (no Express in the name ever) or sign the form and have the item delivery re-attempted the following day.
    techrepublic@...
  • Thank your local Windows Operating System

    ...for this mess.
    james347
  • RE: Spamvertised Post Office Express Mail (USPS) emails lead to malware

    Message has been deleted.
    james347
  • RE: Spamvertised Post Office Express Mail (USPS) emails lead to malware

    Thanks for MS.
    james347
    • RE: Spamvertised Post Office Express Mail (USPS) emails lead to malware

      @james347
      MORON
      scruff40
  • RE: Spamvertised Post Office Express Mail (USPS) emails lead to malware

    Great!!! thanks for sharing this information to us!
    <a href="http://www.yuregininsesi.com" title="seslichat">sesli chat</a> <a href="http://www.yuregininsesi.com" title="seslisohbet">sesli sohbet</a>
    talih