Attached Bank Confirmation Redirects to Malicious Site

 Analysis by: Farrel Moje

We recently have observed a spam campaign being delivered to a number of users who allegedly are recipients of a bank confirmation. The email body contains an embedded link that, if clicked, will lead users to a malicious site. The text also includes a supposed previous correspondence asking for proof of the transaction. Moreover, the email suggests a threatening tone, which unwitting users may find curious and eventually click on the malicious link.

Trend Micro users are protected from this kind of spammed mail and other similar threats that involve malicious attachments or URLs. Effective spam filtering, for instance, ensures that unsolicited emails like this alleged bank confirmation will be prevented from landing in the user's inbox.
 SPAM BLOCKING DATE / TIME: February 10, 2017 GMT-8
 TMASE INFO
  • ENGINE:8.0
  • PATTERN:2878