Author Topic: Virus/Backdoor Trojan alert!  (Read 694 times)

0 Members and 1 Guest are viewing this topic.

Offline Johnnie F.

Virus/Backdoor Trojan alert!
« on: September 14, 2012, 07:59:42 AM »
USPS notification #5105362

sent by "USPS Inc. [infodguey@usps.com]"

Received: from [69.181.87.31] by smtp.doneohx.com with SMTP

Quote
Dear customer.

The parcel number #5105362 was sent your home adress.
And it will arrive within four days.

More information and the tracking number are attached in document below.

Thank you.
Copyright© 2012 USPS. All Rights Reserved.

Full Path: usps document.zip
____________________________
____________________________
On computers as of:
Not Available
Last Used:
9/14/2012 at 7:45:13 AM
Startup Item:
No
Launched:
No
____________________________
____________________________
Unknown
Number of users in the Norton Community that have used this file: Unknown
____________________________
High
This file risk is high.

____________________________
Threat Details
Threat type: Virus. Programs that infect other programs, files, or areas of a computer by inserting themselves or attaching themselves to that medium.
____________________________
Origin
Downloaded from  URL Not Available

Subject: USPS notification #5105362

Sender: "USPS Inc." <infodguey@usps.com>

Recipient: ...
____________________________
File Actions
usps document.exe



Fun is the one thing that money can't buy
 

Lebowski

  • Guest
Re: Virus/Backdoor Trojan alert!
« Reply #1 on: September 14, 2012, 11:59:11 AM »
Can we have that in English, please?  ;D
 

Offline thaiga

Re: Virus/Backdoor Trojan alert!
« Reply #2 on: September 14, 2012, 12:02:28 PM »
I think

This fake USPS email tries to get you to download and open an attachment. Under no circumstances should you do so. Flag the message as spam and delete it right away. In other variations of this scam you might be prompted to click on a link, again simply flag as spam and delete the message. If you clicked on any links or downloaded/opened the attachment you should scan for viruses and other threats as soon as you can. Did you receive this scam?

From: “U.S. Postal Service”
Subject: USPS Delivery Failure Notification
File attached: USPS report.zip (20 KB)

Body:

Hello!

Unfortunately we failed to deliver the postal package you have sent on the 19th of September in time because the recipient’s address is erroneous.

Please print out the shipment label attached and collect the package at our office.
Anyone who goes to a psychiatrist should have his head examined.
 

Offline Johnnie F.

Re: Virus/Backdoor Trojan alert!
« Reply #3 on: September 14, 2012, 01:21:11 PM »
The attached document is a .zip file. If you do unzip it, the application usps document.exe  will open and have fun spoiling your file system, infect your computer, and probably report your bank accounts, passwords etc. to its master, who will maybe use that information to deposit/withdraw (?) money in your bank as an act of social redistribution.

Normally documents are .pdf files not .exe! PDF stands for portable document format, a static file, while EXE comes from the verb "execute" and is always used for an application that will do something on your computer, when released or triggered.

That email isn't a mere scam, it contains a virus. You can already see that from the alleged document being zipped. This serves to hide the fact that it doesn't contain a .pdf file, but rather an .exe application.

Some "nice" person had sent that to me this morning. My Norton 360 detected it in my email client before I even noticed it. I never open zipped attachments from sources I'm not sure about, or before Norton has checked them for viruses.
Fun is the one thing that money can't buy
 

Offline Baby Farts

Re: Virus/Backdoor Trojan alert!
« Reply #4 on: September 14, 2012, 05:50:59 PM »
I get those pesky UPS spam mails now and then.  I block the entire domain.
 

 



Thailand
Statistics