Analysis by: Ramon Miguel Romero

We recently came across a spam which poses as an invoice for a certain 'Penalty Charge Notice'. Should unsuspecting users open the .DOC file attached in the said spam email, the embedded macro will trigger the download of the malware detected by Trend Micro as W2KM_DRIDEX.YYSQE. DRIDEX infection could cause financial losses for the affected parties due to its online banking credential theft routines, as well as the compromise of any password-protected material on the system. 

Once again we remind users to never open mail that they deem suspicious or coming from suspicious sources, especially those that come with attachments.

 SPAM BLOCKING DATE / TIME: January 07, 2016 GMT-8
 TMASE INFO
  • ENGINE:8.0
  • PATTERN:2052