MX Lab, http://www.mxlab.eu, started to intercept a new malware distribution campaign by email with the subject “office equipment”.
This email is send from the spoofed addresses and has the following body:
Please sign the attached purchase of the office equipment. We will send you back the receipt afterward.
The attached file e9148007b03c.zip contains the file office_equipment ~2e0c9b44.js.