Description
Cisco Security Intelligence Operations has detected significant activity related to spam e-mail messages that contain a malicious attachment for the recipient. The text in the e-mail message attempts to convince the recipient to open the attachment and view the details. However, the .zip attachment contains a malicious .exe file that, when executed, attempts to infect the system with malicious code.
E-mail messages that are related to this threat (RuleID5550) may contain any of the following files:
img-scr.zip
img-scr.exe
The img-scr.exe file in the img-scr.zip attachment has a file size of 47,616 bytes. The MD5 checksum, which is a unique identifier of the executable, is the following string: 0x86315C1C9966EC7B4C5F88659E9F957D
Source: Cisco