Fedex service. Get your parcel NO#3229
This morning, I got a suspicious email into my Junk E-mail folder, which I would normally ignore. This time, however, it got my attention because we were indeed expecting a package delivery. Even though we already knew the package carrier is not Fedex, what if it changed the carrier? But again, it looks to me like a typical scam email because our package carrier is not supposed know my email address. The suspicious email has an attached payload zip file. The email says in not-so-perfect English:
Dear Customer,
The delivery service couldn’t deliver your package.
The package weight exceeds the allowable free-delivery limit.You have to receive your packagen personally.
Print out the “Invoice Copy” attached and collect the package at our office.Please read carefully the attached information before receiving your package.
Thank you for attention. FedEx Global.
The attached payload file name was: “FedEx_Invoice_Copy_N44-134.zip“
The zip file was only 3 byte long.. What’s going on here? If the zip file ever gets clicked (opened), 100% virus-generating code would infect the running PC.
The email forensic reveals that it has originated from www-data <www-data@mail.ecom.hu>. Googling reveals it is not even a legit domain name, in other words this email contains 100% lie. What kind of world are we living in these days?