Looks like a malware email has been going out with the envelope from set to registrar@easydns.com
Subject: Invoice
The body of the message says simply:
Check Invoice#37
The number varies but seems to be two digits, the attached zip file will be named Invoice#(37).zip where the number will match the one in the body of the email.
The .zip file uncompresses to a file named Invoice_store.exe which contains a trojan.
Details on the malware as analyzed by Virustotal is available here.
4243C Dundas St. W, Suite 405
Etobicoke, ON M8X 1Y3
Phone: +1.855.321.EASY (3279)
Fax: +1.647.438.6227
support@easydns.com
Enter your email below to receive a concise, insightful weekly briefing and stay informed about cyberthreats and relevant tech happenings.
For the time being you do not have to be an easyDNS member to receive #AxisOfEasy, however when you subscribe we'll send you a $10 coupon in case you ever decide to try out one of our many web services.
Enter your email below to receive a concise, insightful weekly briefing and stay informed about cyberthreats and relevant tech happenings.
For the time being you do not have to be an easyDNS member to receive #AxisOfEasy, however when you subscribe we'll send you a $10 coupon in case you ever decide to try out one of our many web services.
"*" indicates required fields
Leave a Reply