Description
Cisco Security Intelligence Operations has detected significant activity related to e-mail messages that claim to offer a discount coupon for Apple products for the recipient. The text in the e-mail message attempts to persuade the recipient to open the attachment and view the details. However, the .zip attachment contains a malicious .exe file that, when executed, attempts to infect the system with malicious code.
E-mail messages that are related to this threat (RuleID5211) may contain the following files:
Apple coupon.zip
Apple coupon.exe
The Apple coupon.exe file size in the Apple coupon.zip attachment is unavailable. The MD5 checksum is also unavailable.
The following text is a sample of the e-mail message that is associated with this threat outbreak:
Subject: =?iso-8859-1?q?We=92ve_got_a_winner!?=
Message Body:
Web Version | Update preferences | Unsubscribe
Forward
Hello!
Only 1000 people across the United State have been chosenas winners and you are one of them!
gift
We would like to give you a 40% discount coupon for Apple product (it’s in the attachments).
You can buy a MacBook, iPod, iPhone or anything else Apple products you want! All you need to do is print it out and show at the checkout.
Next time you go to Bestbuy, Apple Store or Circuit City you are able to save up to 40% of any purchase of Apple production.
The discount coupon can be used in Bestbuy, Apple Store or Circuit City
All the rules and detailed information about the contest are also can be found in the attachments to this email.
Congratulations!
Edit your subscription | Unsubscribe
Source: Cisco