2015 November 4 16:10 GMT
2015 November 18 14:00 GMT
Email messages that are related to this threat (RuleID19175) and (RuleID19175KVR) may contain the following files:
Name | Size in Bytes | MD5 Checksum
854XKA3.doc | 283,648
K8QPMPW6WHS2UY.doc | 193,536
The following text is a sample of the email message that is associated with this threat outbreak:
> Subject: Transaction__V278L4D01
Transaction Total: 26490.20 US Dollars
Timestamp: 11:41 Monday, Nov 2, 2015
General Status: Please see enclosed Doc file
> Subject: Status 8A6ANX1Q5NP
Total Amount: 36841.00 US Dollars
Time Stamp: 11.02.2015
General Status: Please open attached Statement.
> Subject: New status transaction 7K37KO1UARIFC1
Amount: 32606.92 USD
Transaction #: 3RM3E
Changed Status: Please view enclosed Doc file.
Cisco security appliances can help protect customers during the critical period between the first exploit of a virus outbreak and the release of vendor antivirus signatures. Cisco Web Security Appliances help secure and control web and email traffic by offering layers of malware protection. Cisco security appliances are automatically updated to help prevent both spam email and hostile web URLs from being passed to the end user.
A standalone copy or paraphrase of the text of this document that omits the distribution URL is an uncontrolled copy and may lack important information or contain factual errors. The information in this document is intended for end users of Cisco products