Originally posted on: http://geekswithblogs.net/benko/archive/2014/09/08/email-exploit-example-1.aspx
I want to help people be aware of some of the scams going on. Lately I’ve been getting a number of emails that are needing some attention.The latest phishing scam example is fairly clever, disguising itself as a voicemail received by outlook. It includes text with a bogus phone number and a link to a zip file they want you to open that includes the exploit. Notice that the from email says Microsoft Outlook Voicemail which might be a real source of stuff for you, but the actual email is from the domain “documents233.com”!
Taking a closer look at where this comes from you can run a Whois to see the registration information on the domain…which shows the domain is owned by some company in China! Should you open this up? Only if you want to install their virus on your machine, because the attached zip is an executable that wants to install stuff when you run it.
Just saying…always be careful what you click!