Post Express Service. Your package delivered!

Here's a malicious email from Post Express Service. They're telling that there's a particular parcel that was not delivered properly. They prompt the user to click on the attachment which contains a Troj/Spyeye-R according to Sophos.com.


Here's their message.

Subject: Post Express Service. Get the parcel NR<random number>

Message body:
Dear client.

Your package has been returned to the Post Express office.
The reason of the return is "Error in the delivery address"

Attached to the letter mailing label contains the details of the package delivery.
You have to print mailing label, and come in the Post Express office in order to receive the packages.

Thank you.
Post Express Support

Attached file: Post_Express_Label_<random number>.zip

Other subject lines used in the attack include:

Post Express Service. Number of your parcel <random number>
Post Express Service. Package is available for pickup! NR<random number>
Post Express Service. Delivery refuse! NR<random number>

Hopefully you and the users inside your company won't be so excited about the thought of an unexpected parcel that they open the attached file, as doing so will infect your Windows computer with malware.

Remember, there's only one reason why cybercriminals keep using this type of social engineering to fool users into running malware - it works.