Wow, these scammers are getting really lazy! As soon as you see that bogus "App Store" email address as well as the list of addresses it was sent to I don't see how anyone would even consider clicking on the attachment! 
Maybe "Brittany" won't notice that oversightas well as the list of addresses it was sent to
That would be a logical explanation.Maybe the macromalware is just a dropper and once executed, it can download the malicious executable that would have a higher ratio on VT.
You changed your nickname again? This one is easier to pronounce. The sample is still in my inbox.I can try and investigate the attachment for you if you'd like and provide some malware analysis insight. I'm a bit bored these days, it'll spice things up.
Send me the attachment download in a PM - if you don't have it, I'll use the VT link and see if I can find the sample myself.
Maybe "Brittany" won't notice that oversight![]()
We found your account has been logged with difference devices and locations, we suspect that the party is not responsible've entered your account without you knowing.
[..]
Your account has been limited because we find suspicious activity very fatal. Reviews Please immediately log into your account and fill out all the data we provide to recover your account.
Message Αlert for: [REDACTED]
Your mailbοx may not be functiοning prοperly due to an autοmatic syncing errοr on your email server. This may cause some messages not deliνered to your inbοx, or wrοngly sent to your Junk Εmail fοlder.
To fix this errοr, please take a minute to cοmplete the οne-step manual update of your mailbοx serνer.
UΡDΑTE ΝΟW < [REDACTED URL]>
You will be redirected to your mailbοx to continue with your wοrk, once you have sucessfully cοmpleted the update.
Μicrοsοft Οffice365 Suppοrt
Ρriνacy | Legal Νotices
________________________________
Οffice365 ΑccID : [REDACTED]
This is a system nοtificatiοn. Please DO ΝOT reply as it would not be read.