MX Lab, http://www.mxlab.eu, started to intercept a new malware distribution campaign by email that is inspired on the passing away of Steve Jobs, CEO of Apple, with subjects like:
Steve Jobs Not Dead!
Steve Jobs: Not Dead Yet!
Steve Jobs Alive!
Is Steve Jobs Really Dead?
The email is send from randomly chosen spoofed address and has the following body:
At this URL is a redirect in place that will lead you to the host where the malicious payload is hosted.
The code is obfuscated but will install a rogue AV on your system.
At the time of writing, only 5 of the 43 AV engines did detect the trojan at Virus Total.
Virus Total permalink and MD5: c0dd7a4d155ce895544122fe54a70cc8.