Description
Cisco Security Intelligence Operations has detected significant activity related to spam e-mail messages that claim to contain an attachment for the recipient. The text in the e-mail message attempts to convince the recipient to open the attachment and view the details. However, the attachment contains a malicious .scr file that, when executed, attempts to infect the system with malicious code.
E-mail messages that are related to this threat (RuleID5644) may contain the following file:
infomation.scr
The infomation.scr file has a file size of 324,096 bytes. The MD5 checksum, which is a unique identifier of the executable, is the following string: 0x4749915DA36DC8009AB548EDBE69C047
Source: Cisco Systems