Virus Alert - Invoice File for June 2014 - July 2014 - Invoice 2014080414

Comments: 0
Views: 1,628
Save
Updated: Aug. 28, 2014 2014-08-28T11:30:05
Posted: Aug. 4, 2014 2014-08-04T10:45:06
Online Threat Alerts (OTA)

The email message below: "Invoice 2014080419 - invoice file for June 2014 - July 2014. Please pay invoice in full," has a virus or Trojan horse attached to it that will infect your Windows computer if you open it. The message was designed to trick the recipients into opening the malicious attachment, disguised as an invoice. So, if you receive the same email message, please do not attempt to open the attachment.

Samples of the Virus Emails

Date: Mon, 04 Aug 2014 20:29:43 +0900 [07:29:43 EDT]
From: Accounts Dept [tolvan.rover @btinternet.com]
Subject: Invoice 2014080419
Attachment: INV_2014080419.zip

This email contains an invoice file for June 2014 - July 2014. Please pay invoice in full in 3 business days and reply to us.

Subject: Invoice 2014080414
Attachment: INV_2014080414.zip

This email contains an invoice file for June 2014 - July 2014. Please pay invoice in full in 3 business days and reply to us.

Date: Mon, 04 Aug 2014 20:29:43 +0900 [07:29:43 EDT]
From: Accounts Dept [tolvan.rover @btinternet.com]
Subject:Invoice 2014080419
Attachment: INV_2014080419.zip

This email contains an invoice file for June 2014 - July 2014. Please pay invoice in full in 3 business days and reply to us.

The attachment "INV_2014080414.zip” or "INV_2014080419.zip" contains the file "invoice_june2014 -july2014.xls", which contains the malicious file "invoice_june2014 -july2014.xls.scr". Note: The attachment name may change.

We found the following threats after scanning the malicious file:

Generic_r.DZN
Trojan.GenericKD.1772187
Spyware/Win32.Zbot
TR/Crypt.ZPACK.87789
Win32:Trojan-gen
Trojan.Win32.Small.BPSD
Trojan.GenericKD.1772187
HW32.Keylogger.ikmm
W32/Trojan.RIHE-2885
Trojan.DownLoad3.32784
Win32/TrojanDownloader.Small.PSD

The cybercriminals behind these malicious email messages aims are to trick the curious recipients into opening the malicious attachment that will infect their computers with a virus or Trojan horse.

Once your computer has become infected with this malicious Trojan horse, the cybercriminals behind this email message will be able to access and take control of your computer remotely from anywhere around the world. They may spy on you, use your computer to commit cybercrimes, or steal your personal and financial information.

Now, if you have already opened anyone of these malicious attachments, please do a full scan of your computer with the antivirus software installed on it. The name of the attachment may change, so be careful when opening email attachments.

If you don’t have antivirus software installed on your computer, please click here for a list of free antivirus software.

Never open an attachment that has a name ending with “.scr”, because these are computer programs that can infect your computer with a virus or some other malware.

Click here for a list of email attachments you should never open, regardless of where they came from.

For a list of other virus email messages, please click here.