Fake German Delivery Note with DRIDEX Attachment

 Analysis by: Jan Lemuel Gonzalvo

An email poses to be a delivery note from a dry cleaning shop. This spammed message, written in German, contains an attached document. The attached document contains a malicious macro that can infect the user. Upon investigation, the malware is identified and detected as W2KM_DRIDEX.YYSQC. Users are always advised to carefully check the email they receive and check the attachment before opening any attachment.

 SPAM BLOCKING DATE / TIME: December 23, 2015 GMT-8
 TMASE INFO
  • ENGINE:8.0
  • PATTERN:2020