Spamvertised FedEx notifications lead to malware

A currently ongoing spamvertised campaign is brand-jacking FedEx for malware-serving purposes.

A currently ongoing spamvertised campaign is brand-jacking FedEx for malware-serving purposes.

Sample attachments:FedEx letter.zip; FedEx letter.exe Sample subject: FedEx notification #random number Sample message: Dear customer. The parcel was sent your home address. And it will arrive within 7 business day. More information and the tracking number are attached in document below. Thank you. © FedEx 1995-2011

Upon downloading the executing the attachment, the malware attempts to download  two additional binaries, next to sniffing for FTP credentials off infected hosts.

Detection rate for FedEx letter.exe.