Once Again, Bogus Promos Used to Seed Malware

The conclusion of the recent holiday season didn’t stop cybercriminals from creating new spoofed promos to distribute malware, of course.
Very much similar to the social-engineering campaign that used McDonald’s and Coca-Cola, yet another spam run that distributes malware was recently found by Trend Micro researchers.
Popular brands such as IKEA, Jack Daniel’s, and British Airways were all used for this recent campaign. Spam emails are sent, promoting a coupon and instructing the recipient to open the attached coupon to cash in on savings. But instead of a coupon, the attachment actually contains malware that compromises the victim’s computer.
Below are screenshots of sample spam emails with their corresponding attachments:

Figure 1. The attachment for this spam is named ikea.exe.

Figure 2. The attachment for this spam is named jackdaniels-coupon.exe.

Figure 3. The attachment for this spam is named product-extention.exe.

Figure 4. The attachment for this spam is named britishairways-coupon.exe.
The Trend Micro Smart Protection Network provides users complete protection from this threat, with spam mails already blocked, and the malicious coupons detected as TROJ_DROPPER.FYU.
Post from: TrendLabs | Malware Blog - by Trend Micro
Once Again, Bogus Promos Used to Seed Malware

(continue reading...)