Previous  bell    Next
bell Warning: JavaScript is turned off! Some features on this website will not work without it.

ADP FedEx Shipment Notification Malicious Email

If you have received the email message below: "ADP - FedEx Shipment Notification," please delete it. This is because the email has a malicious Trojan horse attached. The malicious attachment is a Zip or compressed file with the name ADP_PAYROL_19289981.zip. This zip or compressed file contains the malicious executable Trojan horse file with the name ADP_PAYROL_19289981.exe.
ADP FedEx Shipment Notification Malicious Email
Online Threat Alerts

ADP FedEx Shipment Notification Malicious Email


Rating - Thumb up Rating - Thumb down 0   
ADP FedEx Shipment Notification Malicious Email

If you have received the email message below: "ADP - FedEx Shipment Notification," please delete it. This is because the email has a malicious Trojan horse attached. The malicious attachment is a Zip or compressed file with the name ADP_PAYROL_19289981.zip. This zip or compressed file contains the malicious executable Trojan horse file with the name ADP_PAYROL_19289981.exe.

Please continue reading below.

The Malicious Email ADP - FedEx Shipment Notification

From: Roger_Johnson@adp.com [mailto:Roger_Johnson@adp.com]
Sent: Wednesday, March 13, 2013 11:28 AM
To: ****
Subject: ADP - FedEx Shipment Notification

Your payroll document(s) were shipped by ADP on 03/13/2013 via FedEx.

Please use the FedEx shipment tracking number(s) below to monitor the location of your payroll package(s).

You can access this information by simply clicking on your FedEx tracking number(s).

For more details, please download the attached file.

If you have any questions regarding this email you may contact me by using the information below.

Sincerely,

Roger_Johnson
888/220-5023
Roger_Johnson@adp.com

The names of both zip and Trojan file names may change. The file names will have the naming format: ADP_PAYROL_???.zip, with the characters “???” replaced with randomly generated numbers.

Do not open any attachments with the filename starting with or containing the name ADP_PAYROL. The email was not sent from ADP.com although it appears to, because the “From” address is Roger_Johnson@ adp.com. This e-mali address may also change to something at adp.com.

The malicious file ADP_PAYROL_19289981.exe was scanned with 45 antivirus software and 10 detected the Trojan. These 10 antivirus software are able to remove this threat.

Here are the results of the scans:

File name: ADP_PAYROL_19289981.exe
File type: Win32 EXE
Detection ratio: 10 / 45

Antivirus Threat

  • AhnLab-V3 --- Trojan/Win32.Tepfer
  • BitDefender --- Trojan.Generic.KDZ.10693
  • CAT-QuickHeal --- (Suspicious) - DNAScan
  • Commtouch --- W32/Trojan.RZUA-2634
  • Fortinet --- W32/Kryptik.KZ!tr
  • GData --- Trojan.Generic.KDZ.10693
  • Kaspersky --- UDS:DangerousObject.Multi.Generic
  • Malwarebytes --- Malware.Packer.SGX3
  • MicroWorld-eScan --- Trojan.Generic.KDZ.10693
  • PCTools --- Suspicious.Cloud.7.L

Never open any application files (file with the extension .EXE) sent as an e-mail attachment. Click here to view a list of e-mail attachments you should never open.

Remember to leave your comment and read the ones made by others below. And, please report malicious, phishing or scam email messages, social media posts and websites to us. You may click here to contact us, or forward the email messages to: info@onlinethreatalerts.com .

Alert and help your family and friends by sharing this article with them:
Submit Your Comment or Question

Submit your comment or question in the box below to share what you know or to get answers about this article.

CommentComments or Questions (6)