Read more about Chinese data breaches in Have I been pwned.
Following on from a new style campaign that started yesterday, using what pretend to be RTF files instead of doc files are a series of emails with subjects like Notification 2839805395, Facture 9860710035, Paper 6827786914 ( all random numbers) coming from random names @ with a malicious word doc or Excel XLS spreadsheet attachment is another one from the current bot runs which try to download various Trojans and password stealers especially banking Trojans like Dridex or Dyreza and ransomware like cryptolocker or Teslacrypt.
Im currently looking for work either full time or as a intern to get experience in the field.
Best regards, Laurena Washabaugh The attachment is named Resume.rtf, but is it actually a DOCX file with (Quasi Networks, Seychelles) I recommend that you -block- traffic to that IP..." * https:// 1] https://malwr.com/analysis/ZDYy OTUz M..ZDEz NWM1Y2U/ 2] https:// Id=1 3] https:// Id=4 : https:// - - "An email with the subject of 'Quick Question' pretending to attach a -resume- coming from random senders with Date: Fri 29/01/2016 Subject: Quick Question Attachment: Howdy I was visting your website on 1/29/2016 and Im very interested.The attachment names are all random and do not match any of the other numbers in subject or body Note: the attachments are actually docx files not RTF.They have just been renamed to rtf by the bad guys and word will still open them as if they are a doc or docx file The email looks like: From: Rose Schimke Screenshot: None 30 January 2016 : 471570Current Virus total detections: Neither MALWR nor Payload security can extract any meaningful content from these macro droppers. If they continue in the same vein as yesterday, they will drop a multitude of password stealers, remote admin backdoors and other banking Trojans and possibly a ransomware bundled amongst the package.They are using email addresses and subjects that will scare or entice a user to read the email and open the attachment.A very high proportion are being targeted at small and medium size businesses, with the hope of getting a better response than they do from consumers.