- Popular
- Most Talked-About

Online Threat Alerts (OTA)

An anti-cybercrime community alerting the public to web or internet threats.

Categories

» Latest Online Alerts
» Trending Now
» Recently Talked-About
» What You Commented On
» Saved Alerts
» On This Day
» Yesterday's Most Popular
» Yesterday's Most Recommended
» Yesterday's Most Talked-About
» This Week's Most Popular
» This Week's Most Talked-About
» This Week's Most Recommended
» Last Week's Most Popular
» Last Week's Most Talked-About
» Last Week's Most Recommended
» This Month's Most Popular
» This Month's Most Recommended
» This Month's Most Talked-About
» Last Month's Most Popular
» Last Month's Most Recommended
» Last Month's Most Talked-About
» This Year's Most Popular
» This Year's Most Talked-About
» This Year's Most Recommended
» Last Year's Most Popular
» Last Year's Most Recommended
» Last Year's Most Talked-About
» All-Time Most Popular
» All-Time Most Recommended
» All-Time Most Talked-About
» Emergency or Crisis
» Facebook - Whatsapp
» Fake Anti-Spyware - Virus - Optimization Software
» Hacking - Cyber-attacks
» Hoax - Fake-News - Pranks - Chain Letters
» Kidnappings or Missing Persons
» Lottery - Donation - Inheritance Scams - Ponzi Schemes
» Phishing - Scamming - Fraud - Identity Theft
» Potentially Unwanted Programs (PUP)
» Quiz - Trivia
» Spamming - Adware
» Suspicious
» Useful - Informative
» Virus - Malware - Trojan - Ransomware - Spyware
» Public Review Community
» Web Browser Hijacking
» Questions and Answers
» Word Definition
» Content Removal Request

Virus Email - Thanks For Your Amazon.co.uk Order - 837-1171095-3201918

Comments: 4
Views: 1,431
Save
Updated: Oct. 15, 2014 2014-10-15T13:40:33
Posted: Oct. 15, 2014 2014-10-15T11:13:51
Online Threat Alerts (OTA)

The email message below with the subject: "Your Amazon.co.uk order} 837-1171095-3201918," has malicious Microsoft Word document attached to it that will infect your Windows computer if you open it. The message was not sent by Amazon and was designed to trick the recipients into opening the malicious attachment, disguised as an invoice. So, if you receive the same email message, please do not attempt to open the attachment.

The Virus Email Message

From: AMAZON.CO.UK [order @amazon.co.uk]
Date: 13 October 2014 08:32
Subject: Your Amazon.co.uk order} 837-1171095-3201918

Hello,

Thanks for your order. We’ll let you know once your item(s) have dispatched.You can view the status of your order or make changes to it by visiting Your Orders on Amazon.co.uk.

Order Details

Order #837-1171095-3201918 Placed on October 11, 2014

Order details and invoice in attached file.

Need to make changes to your order? Visit our Help page for more information and video guides.

We hope to see you again soon. Amazon.co.uk

The email message contains a Microsoft Word document with a name of random numbers. The document contains a set of Macro instructions that will download a malicious file from the following website:

weststarradio.co.uk/js/1.bin.exe

The malicious Microsoft Word document is dangerous to you if you open it and enable "Macros".

The website weststarradio.co.uk may have been compromised and the malicious file 1.bin.exe placed on it.

We found the following threats after scanning the malicious file:

MSIL5.VYV
Trojan/Win32.Inject
MSIL:GenMalicious-AUO [Trj]
Trojan.PWS.Panda.5676
Backdoor.Androm 20141015
Spyware.ZeuS.Dyn
BehavesLike.Win32.Backdoor.dh 20141015
Troj/Msil-ANY

The cybercriminals behind these malicious email messages aims are to trick the curious recipients into opening the malicious attachment, which will infect their computers with a virus or Trojan horse.

Once your computer has become infected with this malicious Trojan horse, the cybercriminals behind this email message will be able to access and take control of your computer remotely from anywhere around the world. They may spy on you, use your computer to commit cybercrimes, or steal your personal and financial information.

Now, if you have already opened the malicious attachment, please do a full scan of your computer with the antivirus software installed on it. The name of the attachment may change, so be careful when opening email attachments.

If you don’t have antivirus software installed on your computer, please click here for a list of free antivirus software.

Click here for a list of email attachments you should never open, regardless of where they came from.

For a list of other virus email messages, please click here.

This virus email message is related to the following:

Check the comment section below for additional information, share what you know, or ask a question about this article by leaving a comment below. And, to quickly find answers to your questions, use our search

engine.

Note: Some of the information in samples on this website may have been impersonated or spoofed.

Was this article helpful? +

Yes (0)
No (0)

Share this with others:

Donate Help maintain Online Threat Alerts (OTA) by clicking here.

The comments, reviews or answers below do not necessarily reflect the views of Online Threat Alerts (OTA).

November 3, 2014 at 11:06 AM by an anonymous user from: Saffron Walden, England, United Kingdom
Does this affect i-phones?
remove
- November 3, 2014 at 11:22 AM by info
  No. But we do not recommend attempting to open it on your IPhone.
  remove
  - November 3, 2014 at 11:51 AM by an anonymous user from: Saffron Walden, England, United Kingdom
    I did stupidly open the attachment on my i-phone earlier today, do I need to take action?
    remove
    - November 3, 2014 at 12:16 PM by info
      Ensure that you have an antivirus software on it.
      remove

Show More Comments (3)

Show all comments at once.

Write Your Comment, Question, Answer, or Review

Enter comment, review or question.

Virus Email - Thanks For Your Amazon.co.uk Order - 837-1171095-3201918