Before one could get hired, spammers made sure you remember your school days. And they do this by way of celebrating Classmates’ Day, as seen on the spreading message below:

Clicking on the continue link takes you to the following legitimate-looking Classmates.com Web page:

After which, a download dialog box appears, prompting you to download a file to be able to see the video:

In true spammer-malware author fashion, the downloaded file is an executable, which Trend Micro detects as a TSPY_PAPRAS variant.

This post will be updated as more information on the analysis of the downloaded file comes in.

If you're new here, you may want to subscribe to our RSS feed. Thanks for visiting!