UPS malware now sent via DHL!

March 31st, 2011 by Avi Turiel | Category: Antivirus, Email Security, malware | 4 Comments »

For the 3^rd day running we are seeing vast quantities of email-attached malware. Today the spoofed sender was DHL with subjects like “DHL Express Service”. The emails included standard test such as:

Dear customer.

The parcel was sent your home address.

And it will arrive within 3 business day.

More information and the tracking number are attached in document below.

Thank you.

In their desperation to push out more malware today the senders seem to have overlooked the required filename change – the “DHL.zip” files are now carrying …… UPS.exe (as distributed in the last 2 days).

There is a clear push to build a large number of infected computers – maybe an attempted botnet rebuild following the demise of Rustock in mid-March? The graph below shows the malware portions of daily email (orange line), with large daily outbreaks clearly visible.

Share and Enjoy:

Tags: DHL, malware, UPS

YM

“following the demise of Rustock in mid-April?” – Do you mean mid-March?
http://blog.commtouch.com commtouch

Yes – corrected. Thanks!
http://blog.commtouch.com/cafe/malware/fedex-used-for-continued-email-malware-zombies-up-70/ FedEx used for continued email malware – Zombies up 70% | Commtouch Café

[...] focus to “DHL package notifications”. The zip attachment however, remained “UPS.exe” leading us to conclude that DHL were transporting UPS [...]
http://erosionoffreedom.wordpress.com/2011/06/13/blackplague-vs-hackers-the-ups-wars/ Blackplague vs Hackers : The UPS Wars « The Erosion of Freedom

[...] UPS malware now sent via DHL! (commtouch.com) [...]

Notify me of followup comments via e-mail. You can also subscribe without commenting.

UPS malware now sent via DHL!

Find us around the Web

Subscribe to our newsletter

About Commtouch Cafe

Categories

Recently Written

Blogroll

Tags