Today we have received an e-mail which had the subject “Walk in cooler and freezer”. The email contains an attachment and the context of the e-mail is very direct.
The e-mail contains the question if we buy used equipment and it instructs us to open the attachment.
The attachment has been titled: “[email protected]”.
We decided to upload the attachment to the VirusTotal website to see if it contains any malicious code. Guess what, the attachment contains malware and it has been identified by various antivirus scanners on VirusTotal as a malicious file.
The file holds the following SHA256 value: 51fd294fe99d7e28ac238fb9dd9d41b6c952407718f15645f5c99ec195973777
The malicious e-mail:
Does your company by chance buy used equipment? Please see the attached PDF.
Please let me know.
In the picture below, you are able to view the result of the VirusTotal scan. You can also visit the report on the VirusTotal website by using the following link.
Please stay aware and vigilant.