Analysis by: Cedrick Ramos

We recently found a sample of a spam campaign that appears to use the mask of certain animal nutrtition companies. The email poses to be an invoice from Cargill and attempts to infect users with a document with malicious macro included. Upon investigation, the malware was identified and detected as W2KM_DRIDEX.FDAX. As of this writing, all elements of this spam campaign has been blocked.

Users are always advised to carefully check the emails they receive and refrain from opening those that they deem suspicious, especially when they come with file attachments.
 SPAM BLOCKING DATE / TIME: December 15, 2015 GMT-8
 TMASE INFO
  • ENGINE:8.0
  • PATTERN:AS Pattern 2002