Collaborate Disseminate
The next in the series of today’s Locky downloaders is an email with the subject of Cancellation pretending to come from random senders with a zip attachment containing a JavaScript file that pretends to be a pdf They use email addresses and subjects that … Continue reading →
Today’s Locky/ Zepto ransomware malspam emails have come steadily in waves all day long. There have been 2 distinct different subjects and themes. one pretending to be a voice message from your own email domain or company, with the second pretending … Continue reading →
The next batch of malspam emails delivering locky ransomware is a series of emails with subjects like “Hi” , “Hi There” or “Hello” coming from random names, companies and email addresses with a zip attachment containing a WSF ( Windows Scripting File) They use email addresses … Continue reading →
Continue reading “Hi” , “Hi There” , “Hello” malspam delivers Locky ransomware
Today’s first example of malspam word docs with macros delivering Locky ransomware is an email with the subject of Today’s fax pretending to come from random names at your own email domain . They are using email addresses and subjects that will scare … Continue reading →
Continue reading Today’s fax malspam word macros leads to Locky ransomware
Following on from THIS post ( and THESE earlier ones) about Java Adwind Trojans being delivered by various financial themed emails, we see a new entry to the financial themed emails with the subject of Cancel Attached Transaction pretending to come … Continue reading →
Continue reading Cancel Attached Transaction shift-sg.com supposed to lead to Java Adwind
The latest in a long line of generic emails delivering Locky ransomware is an email with the subject of Payment Receipt pretending to come from random companies and email addresses with a malicious word doc attachment They are using email addresses … Continue reading →
Continue reading Attached is the copy of your payment receipt leads to Locky ransomware
We continue to see Java Adwind Trojans daily. Today’s example is a slight change to the delivery method from previous Malspam emails that have been using Moneyexpress.com or MoneyGram or other middle eastern money exchange bodies. This one is an email with … Continue reading →
Continue reading Unclaimed Commission Report-WUBS malspam delivers Java Adwind
The latest Apple/ITunes phish pretends to be confirmation of an ITunes order for CoPilot premium HD. The email looks like : From: Apple Store Billing <apple.client30418@administrationsp.com> Date: Tue 16/08/2016 11:16 Subject: Apple Payment Ticket (REF:76228) Body content: Store Dear Apple … Continue reading →
The second of today’s Locky ransomware examples is a blank / empty email with the subject saying Blank 2 pretending to come from random names at your own email domain with a zip attachment containing a random numbered WSF ( script file) … Continue reading →
Continue reading Blank 2 pretending to come from your own email address delivers Locky ransomware
Today’s first Locky ransomware example is a blank / empty email with the subject saying something like File: Scan(86) or Emailing: Document(2) or Emailing: Receipt(8) [ random numbered] or other similar generic subjects pretending to come from random names at your own email … Continue reading →