Online Threat Alerts (OTA)
An anti-cybercrime community alerting the public.

Fake and Virus Email - Bill.com Invoice Has Been Paid

  • 0
  • 2,107
  • Sep. 10, 2014

The fake email message below with the subject: "Bill.com Invoice has been paid," has a malicious Zip or compressed file, which contains a virus or Trojan horse that will infect the recipients' Windows computer. The message was designed to trick the recipients into opening the malicious attachment, disguised as a 'bill.com' invoice or statement. So, if you receive the same email message, please do not attempt to open the attachment.

Advertisements

The Virus Email Message

Date: Tue, 09 Sep 2014 14:16:29 +0530
From: "The Bill.com Team" notificationonlyGNAThq.bill.com
To: "bade33aGNATsecuremecca.com" bade33aGNATsecuremecca.com
Subject: Bill.com Invoice has been paid

Attachment: bill-d59f78596bfa 79e01898cf9d0e645b9 9328028d597e900514 6787f09435a01016270d 6ffc5d69ec27901.zip

X-Originating-IP: 14.141.133 .162

Hi,

Thank you for payment to Bill.com. The credit/debit card you have on file with us was successfully charged $312.89 for the billing period 08/01/14-09/01/14.

The Statement for this account is now available for viewing. Please find it attached to this email.

Have questions? Sign in at https://app.bill.com , then contact support.

Thank you,

The Bill.com Team

Please do not respond to this email. This e-mail was sent from a notification-only e-mail address.

The email attachment:
"bill-d59f78596bfa 79e01898cf9d0e645b9 9328028d597e900514 6787f09435a01016270d 6ffc5d69ec27901.zip"

contains the malicious file:
"BILL_ID_895634523 9452583458736457634 5987987643298576329 8563253245.pdf.exe", which contains a virus or Trojan horse.

If the malicious file is opened, it will infect the recipients' Microsoft Windows computers.

Once their computers have become infected with this malicious Trojan horse, the cybercriminals behind this email message will be able to access and take control of their computers remotely from anywhere around the world. They may spy on them, use their computers to commit cybercrimes, or steal their personal and financial information.

Now, if you have already downloaded a file from the malicious website, please do a full scan of your computer with the antivirus software installed on it.

If you don’t have antivirus software installed on your computer, please click here for a list of free antivirus software.

Click here for a list of email attachments you should never open, regardless of where they came from.

For a list of other virus email messages, please click here.

Check the comment section for additional information, or share what you know or ask a question about this article, by clicking the 'View or Write Comment' button below.

Note: Some of the information in samples on this website may have been impersonated or spoofed.

Share this article with others.
Advertisements
Write / View Comments (0)
View on Online Threat Alerts (OTA)
Help Maintain Online Threat Alerts (OTA)
Copyright © 2012 - 2024 - Online Threat Alerts (OTA).