Threat Outbreak Alert RuleID17737: Email Messages Distributing Malicious Software on September 3, 2015

2015-09-03T13:45:14
ID CISCO-THREAT-40840
Type ciscothreats
Reporter Cisco
Modified 2015-09-03T13:45:14

Description

Medium

Alert ID:

40840

First Published:

2015 September 3 13:45 GMT

Version:

1

Summary

  • Cisco Security has detected significant activity related to spam email messages distributing malicious software.

Email messages that are related to this threat (RuleID17737) may contain the following files:

Name | Size in Bytes | MD5 Checksum
---|---|---
label.scr | 139,264
| 0x157FBD51CE154658657720B69914B9D2

The following text is a sample of the email message that is associated with this threat outbreak:

> Subject: FedEx Delivery Exception

Message Body:

FedEx®
fedex.com|Ship|Track|Manage|Learn|Office/Print Services
We were unable to complete delivery of your package
See "Resolving Delivery Issues" for recommended actions
See "Preparing for Delivery" for helpful tips
Ship (P/U) date:
Friday, 8/28/15
Delivery progress bar
Delivery exception
Estimated delivery date:
Tuesday, 9/01/15 by 10:00 AM
Shipment Facts
FedEx attempted, but was unable to complete delivery of the following shipment:
Status: Delivery exception
Service type: FedEx International Priority
Packaging type: Your Packaging
Number of pieces: 1
Weight: 11.00 lb.
Special handling/Services: Deliver Weekday
Residential Delivery
Resolving Delivery Issues
The reason delivery was not completed is outlined below.
Where applicable, resolution recommendations are also provided.
Please Print out the Label attach to this notification for more information to have the issue resolve.
Exception Reason Recommended Action
1. Delivery Address not found. Delivery will be re-attempted the next business day.
Contact us to discuss possible delivery or pickup alternatives.
Preparing for Delivery
To help ensure successful delivery of your shipment, please print out the label attach to this email.
Won't be in?
You may be able to hold your delivery at a convenient FedEx World Service Center or
FedEx Office location for pick up. Track your shipment to determine Hold at FedEx location availability.
Please do not respond to this message. This email was sent from an unattended mailbox.
This report was generated at approximately 11:51 AM CDT on 03/30/2015.
To learn more about FedEx Express, please go to fedex.com.
All weights are estimated.
Estimated delivery displayed above is not valid for money-back guarantee or delay claim purposes.
Shipments delayed because of customs or other regulatory delays are not subject to refund or credit
under FedEx Money-Back Guarantee Policy. Please see FedEx Service Guide for terms and conditions of service,
including FedEx Money-Back Guarantee. For more information, please contact your FedEx customer support representative.
To track the latest status of your shipment, click on the tracking number above, or go to fedex.com.
This tracking update has been sent to you by FedEx at your request.
FedEx does not validate the authenticity of the requestor and does not validate,
guarantee or warrant the authenticity of the request, the requestor's message, or the accuracy of this tracking update.
For tracking results and terms of use, go to fedex.com.
Thank you for your business.

Cisco security appliances can help protect customers during the critical period between the first exploit of a virus outbreak and the release of vendor antivirus signatures. Cisco Web Security Appliances help secure and control web and email traffic by offering layers of malware protection. Cisco security appliances are automatically updated to help prevent both spam email and hostile web URLs from being passed to the end user.

Related Links
Cisco Security
Cisco SenderBase Security Network

Revision History

  • Version | Description | Section | Date
    ---|---|---|---
    1 | Initial Release | | 2015-September-03 13:45 GMT
    Show Less

Legal Disclaimer

  • THIS DOCUMENT IS PROVIDED ON AN "AS IS" BASIS AND DOES NOT IMPLY ANY KIND OF GUARANTEE OR WARRANTY, INCLUDING THE WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR USE. YOUR USE OF THE INFORMATION ON THE DOCUMENT OR MATERIALS LINKED FROM THE DOCUMENT IS AT YOUR OWN RISK. CISCO RESERVES THE RIGHT TO CHANGE OR UPDATE ALERTS AT ANY TIME.

A standalone copy or paraphrase of the text of this document that omits the distribution URL is an uncontrolled copy and may lack important information or contain factual errors. The information in this document is intended for end users of Cisco products