解析者: Joachim Capiral

We have observed a spam outbreak where email messages pose as a simple billing email. It uses Bill in its subject, along with random numbers and a document file as an attachment. There are no messages in the spam message body, making a curious reader eager to click and open the attachment. As with spam like this, the attachment contains a malicious macro, detected as W2KM_DLOADR.YYSWI. This macro is known to download other files, possibly malicious in nature, in the affected system.

Trend Micro product users automatically are protected from the execution of the attachment. Products where spam filtering is enabled assures that this kind of spam never reaches your inbox.

 スパムブロック日時 : 2016年12月17日 0:00:00 GMT-8
 TMASE
  • TMASEエンジン:8.1
  • TMASEパターンバージョン:2766