Where to Buy Trend Micro Products

For Home

For Small Business

1-888-762-8736
(M-F 8:00am-5:00pm CST)

For Enterprise

1-877-218-7353
(M-F 8:00am-5:00pm CST)

Not in the United States?
Select the country/language of your choice:

Asia Pacific Region

Europe

The Americas

Not in the United States?
Select the country/language of your choice:

Asia/Pacific

Europe

America

Login

For Home

For Business

For Partners

Threat Encyclopedia

Fraudulent German Invoice Notification Contains Malware

ANALYSIS BY

Neil Yves Pondo


The use of bogus invoices remains an effective social engineering tactic as seen in the continuous usage of such technique. Recently, we spotted a spammed message written in German language that purports as a notification. It informs users that their invoice is contained in the attached .ZIP file. When users opened the attachment, it executes a malware detected as TSPY_BEBLOH.MJM. This spyware steals information such as IP address, OS version, hardware ID, and socks port among others. It also monitors websites related to financial institutions and steals FTP credentials on the infected system. 

Trend Micro protects users from this threat via its Smart Protection Network that detects the spam and malicious file.

SPAM BLOCKING DATE / TIME: 07 Feb 2013 09:12:00 AM GMT-8
TMASE INFO

  • ENGINE:7.0
  • PATTERN:9620

Connect with us on