Description
Cisco Security Intelligence Operations has detected significant activity related to spam e-mail messages that claim to contain a Social Media Training Plan for the recipient. The text in the e-mail message attempts to convince the recipient to follow a link and view the details. However, the link directs the user to a malicious .zip file containing an .exe file that, when executed, attempts to infect the system with malicious code.
E-mail messages that are related to this threat (RuleID5046) may contain any of the following files:
Social_Media_Training_Plan_2013.zip
Verizon Social Media Training Plan 2013_____.exe
The Verizon Social Media Training Plan 2013_____.exe file in the Social_Media_Training_Plan_2013.zip attachment has a file size of 442,363 bytes. The MD5 checksum, which is a unique identifier of the executable, is the following string: 0xAB0B927207B44085F89911FB95571A88.
The following text section is a sample of the e-mail message that is associated with this threat outbreak:
Subject: Social Media Training
Message Body:
Attached is a quote for the Social Media training we discussed. We tried to make it flexible to accommodate for the an uncertain number of attendees.
Please review and feel free to contact me if you have any questions.
Regards,
John
Source: Cisco