Fedex and the world of malware

Today while trawling through spam, I came across another variation of the good ol’ FedEx scam.

This version looks like this:

Subject: FedEx Tracking N5421062126

Date: Tue, 20 Oct 2009 08:44:11 +0100

Unfortunately we were not able to deliver postal package you sent on October the 18st in time because the recipient’s address is not correct. Please print out the invoice copy attached and collect the package at our office.

Your UPS

Interestingly the wording is exactly the same as it was more than a year back. The only difference (besides the date) is the attached malware. This one carries Mal/EncPk-KP, containing the most recent incarnation of fake anti-virus.

Unfortunately I am quite certain this is not the end of FedEx/UPS scams. As always please be very careful with emails like these and never click on the attachment.