Fake Booking Confirmation Email Delivers Malicious Attachment

 Analysis by: Cedrick Ramos

A spam message that delivers malicious attachments is finding its way to unsuspecting users in the guise of a booking confirmation. The body of the email describes that the email and the document attached are confidential, and advises the user to notify the sender and delete the email immediately if the user's not the intended recipient. However, if the user clicks the attachment, the file will then execute malware on the user's machine.

Trend Micro users are protected from this kind of threat with the Smart Protection Network that detects and blocks the spam even before the message reaches the users' inboxes. Users should also always be wary of unsolicited emails and attachments.
 SPAM BLOCKING DATE / TIME: December 15, 2016 GMT-8
  • ENGINE:8.0
  • PATTERN:AS 2762