Analysis by: Jan Lemuel Gonzalvo

The use of bogus invoices is one of the common social engineering ploys in spam runs to date. In our monitoring we spotted another spammed messages that pose as an invoice statement for a due payment. It then asks the recipients to send a payment to supposedly settle the invoice. Once the user opens the attached document, a malicious macro file is executed. Trend Micro detects this as W2KM_DLOADR.BYX.

Users are always advised carefully check first the emails and their attachments before opening it. Trend Micro protects systems from such threat via Smart Protection Network that detects the malicious file and spam email.

 SPAM BLOCKING DATE / TIME: February 18, 2016 GMT-8
 TMASE INFO
  • ENGINE:
  • PATTERN:2140