Serious Discussion What’s in your Junk Mail folder? (Mega Thread)

[Deleted Member 3a5v73x]

Haven't got any nice attachment in my main inbox lately, however I do receive quite a nice amount of questionable links which may lead to those. By the time I try them links are already dead.

 

[Eddie Morra]

Maybe the macromalware is just a dropper and once executed, it can download the malicious executable that would have a higher ratio on VT.

That would be a logical explanation.

Most of the time, malicious Office VBA Macro's will simply act as an entry to gain code execution on the machine before deploying file-less script attacks or dropping another loader on the environment. Following this, the real payload normally comes into play.

 

[Eddie Morra]

I can try and investigate the attachment for you if you'd like and provide some malware analysis insight. I'm a bit bored these days, it'll spice things up.

Send me the attachment download in a PM - if you don't have it, I'll use the VT link and see if I can find the sample myself.

 

[ForgottenSeer 69673]

I can try and investigate the attachment for you if you'd like and provide some malware analysis insight. I'm a bit bored these days, it'll spice things up.

Send me the attachment download in a PM - if you don't have it, I'll use the VT link and see if I can find the sample myself.

You changed your nickname again? This one is easier to pronounce. The sample is still in my inbox.

 

[ForgottenSeer 69673]

Maybe "Brittany" won't notice that oversight

There was at least 100 other people that it was sent to lol

 

[Dan50]

BitDefender extension blocked it.

 

[tsunami]

it was a sample from last year, the site looks dead.

 

[ForgottenSeer 58943]

 

[tsunami]

oh my bad it isn't...

 

[AtlBo]

Google Safe block. I assume Forticlient or Netcraft would have otherwise...

 

[JB007]

Hello,
Over the past few months I have received more and more spam and in recent weeks I received more spam than emails !
It had become unbearable and I was considering changing my email addresses !
But in the last 4 days I only received 2 spams !
Obviously I am very happy but I would like to understand what happened while hoping that the rain of spam does not start again

 

[TairikuOkami]

You probably have not responded to any spam and you have not tried to unsubscribe proving, that it is your actual email. Or the spammer server might have been taken down.

 

[Dave Russo]

I also was bombarded with spam (I have Yahoo Mail) And was suspicious they were pushing their 60 dollar a year upgrade, which I want no part of right now, kept sending to spam and also blocked sender and maybe it finally worked?? Anyway, Did you do anything differant?

 

[JB007]

Right, I did nothing; only deleted these spam.

 

[ng4ever]

I know if I have to ask it probably is.


AT&T High Speed Internet

Important Message from AT&T

Your account needs immediate attention. Residential customers can log in with your myAT&T user ID and password to be back to browsing the internet as quickly as possible. If you are not registered with myAT&T and a Residential customer, please us at 1-800-286-2020. All Small Business customers must call us at 1-800-321-2000.

To ensure that you reach the right department, it is important that you provide your billing telephone number when prompted.

 

[oldschool]

I know if I have to ask it probably is.

Indeed, it probably is. No screenshot?

 

[ng4ever]

Indeed, it probably is. No screenshot?

 

[plat]

Well, I searched this--because at first I thought it looked like a legit AT&T notice, and after reading some stuff on it, it seems it may be quite legit. It looks like my AT&T cell phone acct. home page. But we know things like this can be hijacked to phish. But...is the below applicable in any way?

AT&T Digital Resources & Answers - Community Forums has Sunset

The AT&T community forum has been sunset, we have compiled the list of new resources that you can use to find answers to any AT&T related question.

forums.att.com

Seems legit, imo. But I would call customer service using a verified phone number from a piece of mailed correspondence preferably. No online stuff to be safe.

 

[oldschool]

@ng4ever did this popup happen in your browser? or your system tray?

Seems legit, imo. But I would call customer service using a verified phone number from a piece of mailed correspondence preferably.

Well, it doesn't address OP by name, which is always suspicious in my book, but I agree that he should contact ATT directly, using info from other correspondence as you suggest.

In any case, I would NOT click on that link in pop-up.

 

[ng4ever]

@ng4ever did this popup happen in your browser? or your system tray?

Well, it doesn't address OP by name, which is always suspicious in my book, but I agree that he should contact ATT directly, using info from other correspondence as you suggest.

In any case, I would NOT click on that link in pop-up.

On a iPhone. ESPN app.