Fake Vodafone or Telstra MMS Email with Malware Attached

Fake Vodafone or Telstra MMS Email with Malware Attached

There are MMS email messages being sent out with a malware attached, appearing as if they came from a Vodafone or Telstra email address. The emails claim that the recipient has received a picture from a mobile number and instructs the recipient to open the malicious attachment to view the picture. MMS stands for Multimedia Messaging Service and is a standard way to send messages that include multimedia content like photos and videos, to and from mobile phones.

The Malicious Email Message

Fake Vodafone or Telstra MMS Email with Malware Attached

From: mms @vodafone .co.uk
Subject: You have received a new message
Attachment: Vodafone_MMS-uk.zip

You have received a picture message from mobile number +447775226358
To save this picture, please save attached file.

The email messages appear as if it came from the following email addresses:

  • mms @telstra .com.au
  • mms @vodafone .com.au

These email messages were not sent from these email addresses, but were spoofed, in order to trick the recipients into believing the messages were sent from Vodafone or Telstra.

The attached Zip file,Vodafone_MMS-uk.zip, contains the file Vodafone_MMS-uk.jpeg.exe, which has been detected as the malwares: Troj/Agent-YXP and VirTool:Win32/Obfuscator.ACP; Backdoor.Win32.Androm.sed

If you look carefully at the file "Vodafone_MMS-uk.jpeg.exe", you will notice that it ends with ".jpeg.exe". This is another trick by the cybercriminals behind this malicious email, used to deceive the recipient into believing the attachment is a Jpeg photo. Jpeg photos end with the extension ".jpeg".

So, if your computer is not configured to view file extensions, you will think the malicious attachment is a photo.

This malicious file cannot infect your mobile devices; it will only infect computers running Microsoft Windows.

Never open any email attachments with the extension or file name ending with, ".EXE". Always be careful when opening email attachments.

Remember to leave your comment and read the ones made by others below.

Alert others by sharing this article with them:
Click the following thumb up or down, if you like or dislike this alert:
Rating: Thumb up 1 likes Rating: Thumb down 0 dislikes   

Your feedback is important to us! We invite you to share any information that you have on this article by telling us what you know or ask a question regarding this article, by leaving a comment in the box below.
We will not send a response to your email address, so do not post your email address in your comment. All response will be posted in the comment section below, to be shared with everyone.

Please read the comments made below (if there are any) before posting yours. Someone may have already posted the same comment or question. Duplicate comment or question will be removed.

Enter your comment or question in the box below and click the "Submit Your Comment or Question" button.

You are currently not signed in, but you may still submit your comment or question. But in order to receive comment and other important notifications and alerts, please click here to sign in, or click here to sign up if you have not yet registered.

CommentComments or Questions (0)

There are no comments or questions. Be the first person to make a comment or ask a question.

Send this article to someone via email:
Email address:
Like our Facebook page at: facebook.com/OnlineThreatAlerts
Follow us on Twitter at: twitter.com/onlinethreatale
Follow us on Google+ at: google.com/+Onlinethreatalerts
Follow us on Pinterest at: pinterest.com/onlinethreat/