Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ciscothreatsCiscoCISCO-THREAT-40571
HistoryAug 19, 2015 - 1:54 p.m.

Threat Outbreak Alert RuleID17446: Email Messages Distributing Malicious Software on August 18, 2015

2015-08-1913:54:47
Cisco
tools.cisco.com
7
JSON

Medium

Alert ID:

40571

First Published:

2015 August 19 13:54 GMT

Version:

1

Summary

  • Cisco Security has detected significant activity related to spam email messages distributing malicious software.

Email messages that are related to this threat (RuleID17446 and RuleID17446KVR) may contain the following files:

Name Size in Bytes MD5 Checksum
Form-sheet_with_new_personal details_.zip / File_with_changed_password_.exe
68,608
0x5AB094D9B54DF7ACE48B9AD1E07EABE0
Document_with_changed_security data_.zip / Form-sheet_with_changed_password_.exe 69,120 0x427D63D1E57B83F187262D6756C4F057

The following text is a sample of the email message that is associated with this threat outbreak:

> Subject: **Bank account control was amended **
Message Body:

American Express
Dear Account Holder,
This e-mail is highly confidential as it contains personal information.
Please note that Your account OnlineID and Password were changed on Mon, 17 Aug 2015 16:11:15 GMT.
Kindly report us in case You have not made these amendments.
Copies of new security details are enclosed below.

Cisco security appliances can help protect customers during the critical period between the first exploit of a virus outbreak and the release of vendor antivirus signatures. Cisco Web Security Appliances help secure and control web and email traffic by offering layers of malware protection. Cisco security appliances are automatically updated to help prevent both spam email and hostile web URLs from being passed to the end user.

Related Links
Cisco Security
Cisco SenderBase Security Network

Revision History

* Version Description Section Date
1 Initial Release 2015-August-19 13:54 GMT
Show Less

Legal Disclaimer

  • THIS DOCUMENT IS PROVIDED ON AN “AS IS” BASIS AND DOES NOT IMPLY ANY KIND OF GUARANTEE OR WARRANTY, INCLUDING THE WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR USE. YOUR USE OF THE INFORMATION ON THE DOCUMENT OR MATERIALS LINKED FROM THE DOCUMENT IS AT YOUR OWN RISK. CISCO RESERVES THE RIGHT TO CHANGE OR UPDATE ALERTS AT ANY TIME.

A standalone copy or paraphrase of the text of this document that omits the distribution URL is an uncontrolled copy and may lack important information or contain factual errors. The information in this document is intended for end users of Cisco products

JSON