Fake PDF malware: Your statement invoice

Malicious email circulated saying " Hello , The invoice for your order". Be alert, Statement invoice coming from random names and random email addresses with a zip attachment is another one from the current bot runs which try to download various Trojans and password stealers especially banking credential stealers, which may include cridex, dridex, dyreza and various Zbots, cryptolocker, ransomware and loads of other malware on your computer. They are using email addresses and subjects that will entice a user to read the email and open the attachment.

Almost all of these also have a password stealing component, with the aim of stealing your bank, PayPal or other financial details along with your email or FTP ( web space) log in credentials. Many of them are also designed to specifically steal your Facebook and other social network log in details.

The email looks like:

Hello.

The invoice for your order.

invoice id=3bPq52ZB.zip

shadow

When you Extracts it, It actually get Invoice_id.exe. which download the malicious file on your computer.

Be very careful with email attachments. All of these emails use Social engineering tricks to persuade you to open the attachments that come with the email. The basic rule is NEVER open any attachment to an email, unless you are expecting it