Lucene search

K
ciscothreatsCiscoCISCO-THREAT-44470
HistoryApr 04, 2016 - 1:18 p.m.

Threat Outbreak Alert RuleID22033: Email Messages Distributing Malicious Software on April 3, 2016

2016-04-0413:18:51
Cisco
tools.cisco.com
5

Medium

Alert ID:

44470

First Published:

2016 April 4 13:18 GMT

Version:

1

Summary

  • Cisco Security has detected significant activity related to spam email messages distributing malicious software.

Email messages that are related to this threat (RuleID22033) may contain the following files:

Name Size in Bytes MD5 Checksum
APPOINTMENT LETTER NC345678.zip / APPOINTMENT LETTER NC345678.exe
696,320
0xFD1DE727AFCA3839B44C38115F679A7C

The following text is a sample of the email message that is associated with this threat outbreak:

> Subject: **Port agency appointment **
Message Body:

Dear Sir,
A/S is pleased to appoint you as port agent
Please accept the appointment and provide
your best pro-forma disbursement account
quotation for the above port call using
our online DA-Desk system.To do this please
open the following link in your internet browser.
Please have your username and password to hand
before clicking on the link.Please follow the
instructions carefully. If you are unable to
connectto the internet or have any problems
using the system, please contact us
immediately.If you have general enquiries
about using the system, please contact us

Cisco security appliances can help protect customers during the critical period between the first exploit of a virus outbreak and the release of vendor antivirus signatures. Cisco Web Security Appliances help secure and control web and email traffic by offering layers of malware protection. Cisco security appliances are automatically updated to help prevent both spam email and hostile web URLs from being passed to the end user.

Related Links
Cisco Security
Cisco SenderBase Security Network

Revision History

* Version Description Section Date
1 Initial Release 2016-April-04 13:18 GMT
Show Less

Legal Disclaimer

  • THIS DOCUMENT IS PROVIDED ON AN “AS IS” BASIS AND DOES NOT IMPLY ANY KIND OF GUARANTEE OR WARRANTY, INCLUDING THE WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR USE. YOUR USE OF THE INFORMATION ON THE DOCUMENT OR MATERIALS LINKED FROM THE DOCUMENT IS AT YOUR OWN RISK. CISCO RESERVES THE RIGHT TO CHANGE OR UPDATE ALERTS AT ANY TIME.

A standalone copy or paraphrase of the text of this document that omits the distribution URL is an uncontrolled copy and may lack important information or contain factual errors. The information in this document is intended for end users of Cisco products