Since we are heading into Christmas season, it might be appropriate to remind people that not everything received via mail is what it appears to be. One variation which is making the rounds these days is the "bogus delivery message" trick - a mail purporting to be from UPS or some other delivery service about "your order". Presumably more people are likely to click on the attached file(s) now, as many people are either awaiting delivery of purchases, or have sent presents elsewhere.
This particular mail contains a ZIP file attachment that contains something that looks like a document - and the true extension is hidden at the end of a very very long file name, so long, in fact, that the true EXE extension is not visible in many unzip clients or in Windows Explorer.
The malware inside is a nasty downloader/rootkit combo that communicates with Russian servers.
Add comment
If you find the content of this comment offensive, you can report it and our crew will have a look at it
Comments