Description
Cisco Security Intelligence Operations has detected significant activity related to spam e-mail messages that claim to contain credit advice for the recipient. The text in the e-mail message attempts to convince the recipient to open the attachment and view the details. However, the .zip attachment contains a malicious .exe file that, when executed, attempts to infect the system with malicious code.
E-mail messages that are related to this threat (RuleID5472) may contain any of the following files:
Scan0884.zip
Scan0{DIGIT[3]}.exe
The Scan0{DIGIT[3]}.exe file in the Scan0884.zip attachment has an approximate file size of 102,676 bytes. The MD5 checksum is not available.
The following text section is a sample of the e-mail message that is associated with this threat outbreak:
Subject: Credit Advice - D037519
Message Body:
Attached please find credit advice.
Best regards,
KeyBank National Association
Global Trade Services Group
Source: Cisco