United Gulf Contracting & General Transport LLC

United Gulf Contracting & General Transport LLC email with a PO.19413.gz attachment
These emails aren't from these companies at all , they are just being used to make the email look more genuine, ie. from a real company.

Note

It's also worth remembering that the company itself  may not have any knowledge of this email and it's link(s) or attachment as it won't have come from their servers and IT systems but from an external bot net. It's not advised to ring them as there won't really be anything they can do to help you.

Message Header::

From: "United Gulf Contracting & General Transport LLC"{joanne@markgaldofloors.com}
Subject: Please kindly let us know if factory can produce them.

Message Body:

Dear Sir/Madam, Please kindly please provide us your most competitive price/quotation as per attached. Your cooperation and immediate action for the above would be highly appreciate. This is for your information and record. Thank you. Best regards, for United Gulf Contracting & General Transport LLC Carlito Baet, Alfonso Jr. Purchase Coordinator Tel. No.: +971 4 3659936 Fax No.: +971 4 4275061 Mob:     +971 52 9257129 Email Address: jayrII@unitedgulfuae.com Website: www.unitedgulfuae.com

 Attachment:

PO.19413.gz

Inside the gz (Gzip) file is a windows executable: PO.19413PDF.exe

Sha256 Hashes:

c7af5902e5922a9a89c4464a36b5c4f6d98e8d613a412581d7f64c2fab4ce2fb [1]

Malware Macro document information:

VirusTotal Report [1] (hits 3/57 Virus Scanners) Malwr Report [1] Hybrid Analysis Report: [1]

Cheers,

Steve

Sanesecurity.com