After patching 11 vulnerabilities for this month’s Patch Tuesday, spam is being sent that falsely claims that the recipient should immediately install another critical Microsoft update.
Advanced Threats Researcher Jamz Yaneza discovered this latest ploy:
Figure 1. Sample email
Patching one’s system using this spam as a guidance, however, downloads a multitude of badness, and one particular malicious piece of malware which is detected as EXPL_ANICMOO.GEN.
Interestingly enough, this exploit has been around for quite some time.
More info on the malicious nature of this blended threat are provided below:
- Quick Fix For Quicktime Rtsp Flaw Needed
- More Russian Uprising3A New Iframes And N404 Web Threat Kit
- Taiwanese Private High School Website Compromised
- All Roads Lead To Troj Smallfxd
- March Malware Roundup
Malware writers are counting on the urgency of the email’s tone to trick recipients into applying the “patch.”
Rest assured that Trend Micro users are protected against this threat. The Smart Protection Network blocks the spam, malicious URLs and detects the malicious files related to this attack.