your passport to all things web
Email Attachments Supposedly Coming From e-fax Contain Malware
Researchers from Danish firm Heimdal Security said on Monday they observed a new campaign launched over the weekend spreading the malware. The campaign relies heavily on spamming victims and tricking them into opening a rigged .zip file that’s disguised as an e-fax file.
.zip file is opened, an
.exe file that’s nested inside is activated and code is dropped onto the victim’s machine. The malware uses DLL hijacking to write system usernames and passwords to a text file and send them along to the attacker’s command-and-control server.
Messages from e-fax are always suspect, however, it is a valid internet service. If you receive a message from e-fax with an attachment, the best course of action is to have IT check the file prior to opening.