Fake and Virus Email - Bill.com Invoice Has Been Paid
September 10, 2014
The fake email message below with the subject: "Bill.com Invoice has been paid," has a malicious Zip or compressed file, which contains a virus or Trojan horse that will infect the recipients' Windows computer. The message was designed to trick the recipients into opening the malicious attachment, disguised as a 'bill.com' invoice or statement. So, if you receive the same email message, please do not attempt to open the attachment.
Please continue reading below.
The Virus Email Message
Date: Tue, 09 Sep 2014 14:16:29 +0530
From: "The Bill.com Team" <notificationonlyGNAThq.bill.com>
To: "bade33aGNATsecuremecca.com" <bade33aGNATsecuremecca.com>
Subject: Bill.com Invoice has been paid
Attachment: bill-d59f78596bfa 79e01898cf9d0e645b9 9328028d597e900514 6787f09435a01016270d 6ffc5d69ec27901.zip
X-Originating-IP: 14.141.133 .162
Thank you for payment to Bill.com. The credit/debit card you have on file with us was successfully charged $312.89 for the billing period 08/01/14-09/01/14.
The Statement for this account is now available for viewing. Please find it attached to this email.
Have questions? Sign in at https://app.bill.com , then contact support.
The Bill.com Team
Please do not respond to this email. This e-mail was sent from a notification-only e-mail address.
The email attachment:
"bill-d59f78596bfa 79e01898cf9d0e645b9 9328028d597e900514 6787f09435a01016270d 6ffc5d69ec27901.zip"
contains the malicious file:
"BILL_ID_895634523 9452583458736457634 5987987643298576329 8563253245.pdf.exe", which contains a virus or Trojan horse.
If the malicious file is opened, it will infect the recipients' Microsoft Windows computers.
Once their computers have become infected with this malicious Trojan horse, the cybercriminals behind this email message will be able to access and take control of their computers remotely from anywhere around the world. They may spy on them, use their computers to commit cybercrimes, or steal their personal and financial information.
Now, if you have already downloaded a file from the malicious website, please do a full scan of your computer with the antivirus software installed on it.
If you don’t have antivirus software installed on your computer, please click here for a list of free antivirus software.
Click here for a list of email attachments you should never open, regardless of where they came from.
For a list of other virus email messages, please click here.
Please share with us what you know or ask a question about this article, by leaving a comment below. And, forward malicious email messages to us using the following email address: firstname.lastname@example.org .
Alert and help your family and friends by sharing this article with them: