It seems cyber criminals aren't taking their holidays and in fact this season is their best time to take advantage of sending out their 'unwanted greetings'. We are receiving another 'e-card' spam attack that uses typical subject lines like "An E-card from Steven", "You've got a Happy New Year Greeting Card", "Happy Christmas" or "Merry Christmas greetings for you" that try to lure users into opening these emails.
.PNG)
.PNG)
The link in the email body will point you to a website with a clickable image hosting a backdoor-trojan (an executable using the filename "postcard.exe").
.png)
So you might wonder what the trojan does on your computer when you accidentally execute it? Here are some of the things it does:
- It collects email addresses from your PC and will send out 'e-card' spam to those harvested emails.
- It forces your Internet Explorer to lower its security settings. This way, the trojan won't have trouble connecting to the internet.
- It may update itself or download arbitrary files.
- Connects to a list of IP addresses and opens a backdoor in your computer where the trojan author can easily connect.
- Steals information like system configuration and IP addresses.
Fortunately, SpamCensor 292 blocks this type of spam messages.
