UPS: Your Package H6280831334

This fake UPS email showed up on our radar this morning at 4:11 AM EST. It comes bundled with an attachment that you should avoid downloading or opening. Flag the message as spam and delete it right away. If curiosity got the better of you and you opened it anyway, scan for viruses and other threats as soon as possible.

A VirusTotal scan of the attachment labeled “UPS_idG4985433.zip” revealed the following:

  • JS/Obfuscus.AACA!tr
  • Mal/Iframe-AE
  • Trojan.Malscript
Sample:

 

Tags: , , , ,

1 comments
Tommy Smith
Tommy Smith

How to remove the ups virus on windows xp I just had to remove this virus from a sytsem and it's not pretty, if you have clicked to open the attachment and been infected you will find that you do not have any programs working in your system including system restore. This is what i done to fix it on a windows xp system. restarted in safe mode, clicked start run, input the following text: "%systemroot%\system32\restore\rstrui.exe" without quotes this will start system restore, once the system has been restores download and install malwarebytes and run a full scan, restart the pc, go to disc cleanup and to more options and click on remove all but the most recent restore points. you can get malwarebytes for free at malwarebytes.org Hope this helps.