Thursday, 12 March 2015

Roberto Alba Falegnameria Aresi

Roberto Alba Falegnameria Aresi Product_details.rar attachment.

These emails aren't from these companies at all , they are just being used to make the email look more genuine, ie. from a real company.
Note
It's also worth remembering that the company itself  may not have any knowledge of this email and it's link(s) or attachment as it won't have come from their servers and IT systems but from an external bot net.

It's not advised to ring them as there won't really be anything they can do to help you.

Message Header::

From: "Roberto Alba"{roberto@interlapis.com}
Subject: Inquiry
Message Body:
Hi,

I'm Roberto Alba the senior purchase manager of Falegnameria Aresi S.R.L,
we heard about your company through customers.

we want to place orders of the products I attached.

The Product design and description has been attached with this email,
kindly go through the product details I attached.

Please forward to the appropriate department in your company to
urgently see to our request.

Thanks

Best Regards,
Roberto Alba
Sales Executive
Telephone: + 39 02 49014378
Falegnameria Aresi S.R.L Italy.
 Attachment:
Product_details.rar
Inside the Rar file is a windows executable:
Product_details.exe

Sha256 Hashes:
66e2fc5be9f2f65b3643395d11f7853a4081c3cd16c2f3074dd728ccff60b4aa [1]

Malware Macro document information:
VirusTotal Report [1] (hits 9/57 Virus Scanners)

Malwr Report [1]

Hybrid Analysis Report: [1]

Cheers,
Steve

1 comment:

Anonymous said...

Thanks for share the downloads on malwar :P