Order Email Notification Comes With Malicious PDF Attachment

 Analysis by: Cedrick Ramos

We recently received samples of a malicious spam campaign that uses a malicious PDF attachment as its malware infection vector. The mail itself has no body content and appears to be sent from a random sender. The PDF attachment that comes with the mail, once opened, displays a malicious link from which malware can be downloaded from onto the system.

Upon investigation, the malware is identified as W2KM_CRYPJAFF.G.
Users are always advised to carefully check the emails they receive by double-checking the sender and content before opening any attachments or links. 

Trend Micro customers are fully protected against this email threat.
 SPAM BLOCKING DATE / TIME: June 07, 2017 GMT-8
 TMASE INFO
  • ENGINE:8.0
  • PATTERN:3118