Fake Facebook Password Spam Arrives With Malicious Attachment

 Analysis by: Harry Reynoso

More Facebook-related spam has been spotted by TrendLabs engineers. This most recent sample purports to be a message coming directly from Facebook administrators. The body of the email claims that the user's password is not safe, and that their password has automatically been changed for security purposes. It then goes on to tell the user that the attached document contains information about the user's new password, as well as other security details that the administration has implemented. The attachment, an image file, is detected as malicious. Users are advised not to click or download it. Moreover, immediate deletion of the spammed email should be prioritized.
 SPAM BLOCKING DATE / TIME: April 13, 2011 GMT-8
 TMASE INFO
  • ENGINE:6.5
  • PATTERN:8072