14 DAY TRIAL // Spam campaigns that rely on bogus MMS message notifications to distribute malware have been around for quite some time. Back in March, Abuse.ch identified fake Swisscom and T-Mobile emails targeting German and Swiss users.
Today, AVG Technologies experts have reported spotting a T-Mobile MMS spam campaign aimed at Internet users from the Czech Republic.
The emails, apparently coming from [email protected], are entitled “T-Mobile MMS.” The email’s body contains only a T-Mobile logo, a mobile phone number and a passcode.
There are no links in the notifications, but the crooks hope curious recipients will open the attachment which appears to represent an image file sent via MMS.
The malicious file, MMS img 76897644.jpeg.exe, unleashes a downloader of the notorious ZeuS Trojan.
This component downloads additional malicious files, but only after it checks to make sure it’s not run in a debugger or a virtual environment.
Additional technical details of the threat are available on AVG’s blog.