Análisis realizado por Mary Isabel Segismundo

Spammers have found DRIDEX-related spammed messages leveraging the Christmas season. It appears to be an invoice from a Christmas-related decorating retailer.

Upon further investigation, the attached invoice is found to be malicious and is detected as W2KM_DRIDEX.MFO. Users are advised to always be wary when opening attachments from unknown senders.

 Fecha/hora de bloqueo del spam: 24 de diciembre de 2015 GMT-8
 TMASE
  • Motor TMASE: 8.0
  • Patrón TMASE: 2022