Threat Outbreak Alert RuleID17668: Email Messages Distributing Malicious Software on August 31, 2015

2015-08-31T21:07:09
ID CISCO-THREAT-40743
Type ciscothreats
Reporter Cisco
Modified 2015-08-31T21:07:09

Description

Medium

Alert ID:

40743

First Published:

2015 August 31 21:07 GMT

Version:

1

Summary

  • Cisco Security has detected significant activity related to spam email messages distributing malicious software.

Email messages that are related to this threat (RuleID17668) may contain the following files:

Name | Size in Bytes | MD5 Checksum
---|---|---
Label.rar / 804738213.exe
| 106,496
| 0xD15B63A15AFB0779F7A4A371E49C4082

The following text is a sample of the email message that is associated with this threat outbreak:

> Subject: FedEx Delivery Exception

Message Body:

Image removed by sender. FedEx®
fedex.com
|
Ship
|
Track
|
Manage
|
Learn
|
Office/Print Services
We were unable to complete delivery of your package
See "Resolving Delivery Issues" for recommended actions
See "Preparing for Delivery" for helpful tips
Ship (P/U) date:
Friday, 8/21/15
Image removed by sender. Delivery progress bar
Delivery exception
Estimated delivery date:
Friday, 8/27/15 by 10:00 AM
Shipment Facts
FedEx attempted, but was unable to complete delivery of the following shipment:
Status: Delivery exception
Service type:
FedEx International Priority
Packaging type:
Your Packaging
Number of pieces:
1
Weight: 11.00 lb.
Special handling/Services:
Deliver Weekday
Residential Delivery
Resolving Delivery Issues
The reason delivery was not completed is outlined below. Where applicable, resolution recommendations are also provided. Please Print out the Label attach to this notification for more information to have the issue resolve.
Exception Reason
Recommended Action
1. Delivery Address not found.
Delivery will be re-attempted the next business day.Contact us to discuss possible delivery or pickup alternatives.
Preparing for Delivery
To help ensure successful delivery of your shipment, please print out the label attach to this email.
Won't be in?
You may be able to hold your delivery at a convenient FedEx World Service Center or FedEx Office location for pick up. Track your shipment to determine Hold at FedEx location availability.
Image removed by sender. Please do not respond to this message. This email was sent from an unattended mailbox. This report was generated at approximately 11:51 AM CDT on 03/30/2015.
To learn more about FedEx Express, please go to fedex.com.
All weights are estimated.
Estimated delivery displayed above is not valid for money-back guarantee or delay claim purposes. Shipments delayed because of customs or other regulatory delays are not subject to refund or credit under FedEx Money-Back Guarantee Policy. Please see FedEx Service Guide for terms and conditions of service, including FedEx Money-Back Guarantee. For more information, please contact your FedEx customer support representative.
To track the latest status of your shipment, click on the tracking number above, or go to fedex.com.
This tracking update has been sent to you by FedEx at your request. FedEx does not validate the authenticity of the requestor and does not validate, guarantee or warrant the authenticity of the request, the requestor's message, or the accuracy of this tracking update. For tracking results and terms of use, go to fedex.com.
Thank you for your business.
CAUTION: This email message and any attachments contain information that may be confidential and may be LEGALLY PRIVILEGED. If you are not the intended recipient, any use, disclosure or copying of this message or attachments is strictly prohibited. If you have received this email message in error please notify us immediately and erase all copies of the message and attachments. We do not accept responsibility for any viruses or similar carried with our email, or any effects our email may have on the recipient computer system or network. Any views expressed in this email may be those of the individual sender and may not necessarily reflect the views of Auckland Tourism, Events and Economic Development Ltd.

Cisco security appliances can help protect customers during the critical period between the first exploit of a virus outbreak and the release of vendor antivirus signatures. Cisco Web Security Appliances help secure and control web and email traffic by offering layers of malware protection. Cisco security appliances are automatically updated to help prevent both spam email and hostile web URLs from being passed to the end user.

Related Links
Cisco Security
Cisco SenderBase Security Network

Revision History

  • Version | Description | Section | Date
    ---|---|---|---
    1 | Initial Release | | 2015-August-31 21:07 GMT
    Show Less

Legal Disclaimer

  • THIS DOCUMENT IS PROVIDED ON AN "AS IS" BASIS AND DOES NOT IMPLY ANY KIND OF GUARANTEE OR WARRANTY, INCLUDING THE WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR USE. YOUR USE OF THE INFORMATION ON THE DOCUMENT OR MATERIALS LINKED FROM THE DOCUMENT IS AT YOUR OWN RISK. CISCO RESERVES THE RIGHT TO CHANGE OR UPDATE ALERTS AT ANY TIME.

A standalone copy or paraphrase of the text of this document that omits the distribution URL is an uncontrolled copy and may lack important information or contain factual errors. The information in this document is intended for end users of Cisco products