Description
Cisco Security Intelligence Operations has detected significant activity related to spam e-mail messages that claim to contain a wire transfer deposit notification for the recipient. The text in the e-mail message attempts to convince the recipient to open the attachment and view the details. However, .scr attachment, when executed, attempts to infect the system with malicious code.
E-mail messages that are related to this threat (RuleID5491) may contain any of the following files:
Transfer Confirmation Slip.scr
The Transfer Confirmation Slip.scr has an approximate file size of 158,074 bytes. The MD5 checksum is not available.
The following text section is a sample of the e-mail message that is associated with this threat outbreak:
Subject: Incoming Wire Notification
Message Body:
Attention Please,
Receive Your Funds Now With No Fee Required
Incoming Wire Notification.
An incoming wire transfer has been received by your financial institution and the funds deposited to your account on 07-03-2013.
Please download the attached document and view the transfer confirmation slip to be sure there's no error on your account that the funds was wired to.
Thanks For your cooperation
Regards
Customer Service
Bank Of America
Benedict Raul
Source: Cisco