Threat Outbreak Alert RuleID11063: Email Messages Distributing Malicious Software on August 11, 2014

2014-08-11T17:41:14
ID CISCO-THREAT-35251
Type ciscothreats
Reporter Cisco
Modified 2014-08-11T17:41:14

Description

Medium

Alert ID:

35251

First Published:

2014 August 11 17:41 GMT

Version:

1

Summary

  • Cisco Security has detected significant activity related to spam email messages distributing malicious software.

Email messages that are related to this threat (RuleID11063) may contain the following files:

Name | Size in Bytes | MD5 Checksum
---|---|---
report081114_6897454147412.zip / report081114_6897454147412..exe
| 22,016
| 0xCAD7B09903F7646EC37E4014DD6E70E4

The following text is a sample of the email message that is associated with this threat outbreak:

> Subject: Bank of America Alert: A Check Exceeded Your Requested Alert Limit

Message Body:

Activity Alert
A check exceeded your requested alert limit
We're letting you know a check written from your account went over the limit you set for this alert.
For more details please check attached file
Amount: $32,385.36
Check number:
00000000463
Transaction date:
08/11/2014
You can sign in to Online or Mobile Banking to review this activity. If you don't recognize this transaction, please call us at 1.888.287.4637.
Security Checkpoint
To confirm the authenticity of messages from us, always look for this Security Checkpoint.
Remember: Always look for your SiteKey® before entering your Passcode. We'll ask you for your Online ID and Passcode when you sign in.
This is a service email from Bank of America. Please note that you may receive service emails in accordance with your Bank of America service agreements, whether or not you elect to receive promotional email.
Read our Privacy Notice.
Please don't reply directly to this automatically generated email message.
Bank of America Email, 8th Floor-NC1-002-08-25, 101 South Tryon St., Charlotte, NC 28255-0001
Bank of America, N.A. Member FDIC. Equal Housing Lender
2014 Bank of America Corporation. All rights reserved.
This email was sent to: administrator@pfoot.net

Cisco security appliances can help protect customers during the critical period between the first exploit of a virus outbreak and the release of vendor antivirus signatures. Cisco Web Security Appliances help secure and control web and email traffic by offering layers of malware protection. Cisco security appliances are automatically updated to help prevent both spam email and hostile web URLs from being passed to the end user.

Related Links
Cisco Security
Cisco SenderBase Security Network

Revision History

  • Version | Description | Section | Date
    ---|---|---|---
    1 | Initial Release | | 2014-August-11 17:41 GMT
    Show Less

Legal Disclaimer

  • THIS DOCUMENT IS PROVIDED ON AN "AS IS" BASIS AND DOES NOT IMPLY ANY KIND OF GUARANTEE OR WARRANTY, INCLUDING THE WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR USE. YOUR USE OF THE INFORMATION ON THE DOCUMENT OR MATERIALS LINKED FROM THE DOCUMENT IS AT YOUR OWN RISK. CISCO RESERVES THE RIGHT TO CHANGE OR UPDATE ALERTS AT ANY TIME.

A standalone copy or paraphrase of the text of this document that omits the distribution URL is an uncontrolled copy and may lack important information or contain factual errors. The information in this document is intended for end users of Cisco products