Following is the message detail of the fake email purporting to be from Staples Advantage:
Scam target:
From (spoofed address):
Email subject:
Your order is awaiting verification!
Scam messages:
Staples Advantage
Your order has been submitted and is awaiting verification from you.
Order #: %number%
Order Date and Eastern Time: 2/19/2013 12:28 PM
Order Total: $774.32
This is potentially due to missing or invalid order or payment information. If you receive this status message, please call Customer Service immediately for assistance.
Attachments:
Order_%number%.zip / OrderDetails.exe
Types of scam:
Malware
Malware name/family:
Variant of Trojan-Spy.Win32.Zeus / Trojan-Spy.Win32.Zbot / Trojan.Win32.Kelihos / Trojan.Lameshield / TR/Winwebsec
Sites contacted by malware:
* Downloads file from “blog.ritual.ca /ponyb/gate.php”.
* Downloads file from “www.intranet-lyrecoiberia.com /fpraCF.exe”.
* Downloads file from “LUXURYLIMOUSINESLTD.CA /gMjEbzf.exe”.
* Downloads file from “costiganllc.com /3iUT.exe”.
