MX Lab, http://www.mxlab.eu, started to intercept a new malware distribution campaign by email with the subject “Statement”.
This email is send from the different spoofed email address and has the following body – each time signed with a different name at the end:
The monthly financial statement is attached within the email.
Please review it before processing.
The attached file ad1a821332cf.zip contains the file monthly_financial_scan 0c2d5b8d.js.