Avis de Paiemen Societe Generale emails.
These emails aren't from these companies at all , they are just being used to make the email look more genuine, ie. from a real company.
Note
It's also worth remembering that the company itself may not have any knowledge of this email and it's link(s) or attachment as it won't have come from their servers and IT systems but from an external bot net.
It's not advised to ring them as there won't really be anything they can do to help you. |
Message Header::
Message Body:
 
Bonjour Monsieur / Madame ,
A votre demande, veuillez trouver ci joint le paiement e-conseils pour votre reference.
Se il vous plait, cliquez ici
Cordialement
LAQUELLE NE NOUS PERMET PAS DE TRAITER VOTRE DEMANDE.
Vous pouvez telecharger gratuitement la derniere version du logiciel
Acrobat Reader a partir du site d'Adobe a l'adresse suivante :
http://www.adobe.fr/products/acrobat/readstep2.html
Ce message et toutes les pieces jointes (ci-apres le ? Message) sont
confidentiels et etablis a l'intention exclusive de ses destinataires.
Toute modification, edition, utilisation ou diffusion non autorisee est
interdite. Si vous avez recu ce Message par erreur, merci de nous en
avertir immediatement. Societe Generale et ses filiales declinent toute
responsabilite au titre de ce Message s'il a ete altere, deforme,
falsifie ou encore edite ou diffuse sans autorisation.
 Groupe societe generale
|
|
The above link takes you to a Zip download:
https://ws.cubbyusercontent.com/p/_6c74369d094a4af0bc08ba8bc1d57b21/AvisDePaiement_FR00427JK.zip/1228467296
The other variant has an attached Zip file instead of a download link:
Avis De Paiement.zip
Inside the Zip is a Windows Executable:
Avis_De_Paiement.scr
Sha256 Hashes:
| 1b3e0b87bbb4d84c7e7b4bea5a409df7272adef9487bbe239ebbfd2be0fa60bf [1] |
Malware Macro document information:
VirusTotal Report [1] (Detection ratio 6 /57)
Malwr Report [1]
Hybrid Analysis Report [1] |
Cheers,
Steve
No comments:
Post a Comment