Virus Email - Activity Alert - A Check Exceeded Your Requested Alert Limit

Virus Email  - Activity Alert - A Check Exceeded Your Requested Alert Limit

The email message below: "Activity Alert: A Check Exceeded Your Requested Alert Limit," has a virus or Trojan horse attached to it that will infect your Windows computer if you open it. The message was designed to trick the recipients into opening the malicious attachment, disguised as an activity alert from the Bank of America. This dangerous email message is a fake and was not sent by the Bank of America.

The Virus Email

From: Bank of America Alert [onlinebanking]
Subject: Activity Alert: A Check Exceeded Your Requested Alert Limit

Activity Alert

A check exceeded your requested alert limit
We're letting you know a check written from your account went over the limit you set for this alert.

For more details please check attached file

Amount: $32,354.61

Check number: 00000008380

Transaction date: 07/21/2014

You can sign in to Online or Mobile Banking to review this activity. If you don't recognize this transaction, please call us at 1.888.287.4637.

Security Checkpoint

To confirm the authenticity of messages from us, always look for this Security Checkpoint.

Remember: Always look for your SiteKey® before entering your Passcode. We'll ask you for your

Online ID and Passcode when you sign in.

This is a service email from Bank of America. Please note that you may receive service emails in accordance with your Bank of America service agreements, whether or not you elect to receive promotional email.

Read our Privacy Notice.

Please don't reply directly to this automatically generated email message.

Bank of America Email, 8th Floor-NC1-002-08-25, 101 South Tryon St., Charlotte, NC 28255-0001

Bank of America, N.A. Member FDIC. Equal Housing Lender
2014 Bank of America Corporation. All rights reserved.
This email was sent to: [your email address]

The attachment "" contains the malicious file "report072114_349578904357.exe". We found the following threats after scanning the malicious file:

  • Trojan.GenericKD.1770368
  • Trojan.DL.Hyteod!dh8T/Rm43+w
  • Trojan/Win32.Upatre
  • TR/Visucius.121
  • Trojan[Downloader]/Win32.Hyteod
  • Win32:MalOb-LL [Cryp]
  • Trojan.Win32.Waski.bF
  • Trojan.GenericKD.1770368
  • TrojanDownloader.Hyteod.r4
  • W32/Trojan.EPGJ-1106
  • TrojWare.Win32.UMal.~A

This email message was not sent by Bank of America, but by cybercriminals, whose aim is to trick the curious recipients into opening the malicious attachment that will infect their computers with a virus or Trojan horse.

Once your computer has become infected with this malicious Trojan horse, the cybercriminals behind this email message will be able to access and take control of your computer remotely from anywhere around the world. They may spy on you, use your computer to commit cybercrimes, or steal your personal and financial information.

Now, if you have already opened anyone of these malicious attachments, please do a full scan of your computer with the antivirus software installed on it. The name of the attachment may change, so be careful when opening email attachments.

If you don’t have antivirus software installed on your computer, please click here for a list of free antivirus software.

Never open an attachment that has a name ending with ".exe", because these are computer programs that can infect your computer with a virus or some other malware.

Click here for a list of email attachments you should never open, regardless of where they came from.

For a list of other virus email messages, please click here.

Check the comment section below for additional information, share what you know, or ask a question about this article by leaving a comment below. And, to quickly find answers to your questions, use our search Search engine.

Note: Some of the information in samples on this website may have been impersonated or spoofed.
Was this article helpful?  +
Share this with others:

Comments, Questions, Answers, or Reviews

There are no comments as yet, please leave one below or revisit.

To protect your privacy, please remove sensitive or identifiable information from your comments, questions, or reviews. We will use your IP address to display your approximate location to other users when you make a post. That location is not enough to find you.

Your post will be set as anonymous because you are not signed in. An anonymous post cannot be edited or deleted, therefore, review it carefully before posting. Sign-in.

Write Your Comment, Question, Answer, or Review

Virus Email - Activity Alert - A Check Exceeded Your Requested Alert Limit