VARIANTE DE BACKDOOR ANDROM RECIBIDO EN ZIP ANEXADO A EMAIL MASIVO

Se está recibiendo un e-mail con el siguiente texto, que anexa fichero ZIP malicioso:

Asunto: Our Ref: DC TSE841866 Counterparty: SXXXXXXXXX CO., LTD. – Ref:[TRDA18724768]
De: “HSBC Advising Service”<advising.service@hsbc.com>
Fecha: 14/11/2017 22:08
Para: undisclosed-recipients:;

HSBC BANK TRADE SERVICES

We attach an Import/Export Trade Services advice (T01) and a copy
of the relative DC/Amendment Content (T02), as applicable, for
your reference.

Please note that the copy of DC/Amendment (T02)
– serves as a pre-advice only and is not a negotiable instrument.
– is available for SWIFT DC/Amendment only.

ATTACHED: HST187866017.ZIP (Contiene HST187866017.exe malicioso)

Please do not reply to this e-mail. If you have any enquiries,
please contact our Business Partner Direct at 2198 8000.

*******************************************************************

This e-mail is confidential. It may also be legally privileged.
If you are not the addressee you may not copy, forward, disclose
or use any part of it. If you have received this message in error,
please delete it and all copies from your system and notify the
sender immediately.

Internet communications cannot be guaranteed to be timely, secure,
error or virus-free. The sender does not accept liability for any
errors or omissions.

*******************************************************************
“SAVE PAPER – THINK BEFORE YOU PRINT!”

__________

total sobre el EXE descargado del ZIP anexado, ofrece el siguiente informe:

El fichero EXE contenido en el ZIP anexado a dicho mail, pasa a ser controlado a partir del ELISTARA 37.87 de hoy

saludos

ms, 15-11-2017