I received an email today with a subject line and body given below. It had a file attached that ended in “.zip”. I put it in the chest for delivery to Avast.
I found a reference to what appears to be the same malware on this forum in February 2011. Avast scanned the email when it came in but didn’t report malware. I saved the attachment as a file and scanned it with Avast but still no warning. Sophos reports this a malware.
I was expecting Avast to catch this. Do I need to alter my settings?
Subject:
Post Express Report. Track number 2139266
and body:
Dear client.
Email notice number.0939262
Your package has been returned to the Post Express office.
The reason of the return is “Error in the delivery address”
Important message!
Attached to the letter mailing label contains the details of the package delivery.
You have to print mailing label, and come in the Post Express office in order to receive the packages!
Thank you for your attention.
Post Express Service.
“Have you sent the zip file to Virustotal?”
“Hmm i had the same problem,it’s not pure malware i think,it’s just a word document that includes malicious websites.”
Yeah, looks like avast need to add the detection. Now that you have sent it off, they have it, so I would suggest that you leave it in the chest, and scan periodically after database updates.
Just discovered this in the junk of my hotmail account…wont let me have it though…hotmail knows best ;D
Left123, doesn’t stop people sending you emails though…