Just a quick warning about a couple of e-mails that had a virus attachment. They are both pretending to be from U.S. Shipping companies.
First we have this one from “UPS”
From: UPS Manager Romeo Law [delivery@ups.com]
Subject: UPS Delivery Problem NR 08488.
Dear customer!We failed to deliver the package sent on the 6th of January in time because the recipient’s address is incorrect.Please print out the invoice copy attached and collect the package at our office.United Parcel Service of America.Dear customer!
We failed to deliver the package sent on the 6th of January in time
because the recipient’s address is incorrect.Please print out the invoice copy attached and collect the package at our office.
United Parcel Service of America.attachment: UPS_invoice_NR34587.zip
NOD32 identifies the virus in this attachment as virus Win32/Oficla.CX trojan. A couple of ways you can tell this is fake, besides the attached virus are; why would UPS wait a couple of weeks to notify you of this? Do they really sign their e-mail United Parcel Service of America? They tell you to pick it up at the office but there is no address or contact info for the office. Just thought I’d point this out.
Next we have one from DHL:
From: Manager Gabrielle Bird [customer@dhl.com]
Subject: DHL Office. Get your parcel NR.4486
Hello!
The courier service was not able to deliver your parcel at your address.
Cause: Mistake in address
You may pickup the parcel at our post office personally.
The delivery advice is attached to this e-mail.
Print this label to get this package at our post office.Please do not reply to this e-mail, it is an unmonitored mailbox!
Thank you,
DHL Global Forwarding Services.attachments: DHL_label_Nr2385.zip > ZIP > DHL_label_Nr2385.exe
ESET-NOD32 Identifies the virus in this attachment as Win32/TrojanDownloader.Bredolab.BE trojan
In case you don’t know this already, never run an .exe file you get in e-mail. Nothing good ever comes from running an .exe you received in e-mail.
Watch out for these or variants of them.
