Analisado porCatherine Loveria

This spam campaign has two different sets of emails, both of which pretends to be an invoice email having attachments. The attachments are said to be paid by the recipients. However, these mails come with malware attachments in the form of a malicious MS Excel macro. Both are detected as variants of X2KM_LOCKY and X2KM_DLOADR.

Spam filtering helps block these kinds of emails. Users are advised to always enable spam filtering. Trend Micro product users are always protected from these kinds of emails.

 Data/Hora do bloqueio de spam: 30 novembro 2016 GMT-8
 TMASE
  • Versão do mecan
  • Patrón TMASE: 2730