New Bredolab variant detected

Messages with the subject line “Your order has been paid! Parcel NR.8314″ and attachment DHL_print_label_42bae.zip name, or similar, should be treated with caution. The ZIP file contains the virus W32/Bredolab!Generic (Authentium, F-Prot), W32/Obfuscated.D2!genr (Norman), Mal/Bredo-A (Sophos).

The body of the email:

Goodafternoon!

Thank you for shopping at our internet shop!
We have successfully received your payment.

Your order has been shipped to your billing address.

You have ordered ” Samsung X22 “

You can find your tracking number in attached to the e-mail document.
Please print the DHL label to get your package.

We hope you enjoy your order!

Virus Total permalink and MD5: caa17f78e301aae4f5424ba99ab1d827.