Sleazy subject lines spammed out with malware

Filed Under: Malware, Spam

Would files with names like Love-Spots.bat,, and pique your interest? If so, your behaviour could be putting your computer's security at risk.

Cybercriminals are spamming out a malicious Trojan horse in large numbers right now, using a variety of sleazy disguises to trick the unwary into opening the attachment.

Sleazy email subject lines

Subject lines include "SUMMER-2011: SEXY CITIES IN THE WORLD", "LOVE BABE CITIES 2011" and the err.. rather less sexy "USPS Delivery Confirmation".

Opening the emails will see the seedy theme continue:

Sleazy emails

Here's another example:

Sleazy emails

But don't, whatever you do, opening the attached files. In reality it's not a map of the world's hottest women, or even a report of a failed parcel delivery. The attached file is a Trojan horse called Troj/Agent-RNY, designed to download further malicious code from the internet onto your Windows computer.

I can't believe that anyone who receives these sleazy emails believes that they were intended to be sent to them. The recipients must know that they are either spam or have been accidentally sent to the wrong address.

So the question is this. Why oh why do people put their computer's security at risk by opening the unsolicited attached files? Such dangerous behaviour doesn't just put your own identity and the data held on your computer in peril, but it also opens up opportunities for malicious hackers to target other innocent internet users too.

, ,

You might like

4 Responses to Sleazy subject lines spammed out with malware

  1. "Why oh why do people....?" Sex over-rules all, especially common sense. CLICK HERE FOR PICS OF GREAT ARCHITECTURE just ain't gonna do it ;)

    • "Cor.. check out the Frank Lloyd Wrights on her.."

    • Machin Shin · 1563 days ago

      You know that really makes me wonder how many would click on that though. I bet you would still get a few clicks even just saying it is architecture. You will probably get a few engineers and a few others that are taken off guard by how random it is.

  2. Nick · 1563 days ago


    I can't help feeling that with these kind of posts, you are preaching to the converted.

    Although something of a generalisation, it's not too unreasonable to state that anyone who reads your posts is necessarily already informed about these kind of spams, scams & Facebook click-jacking attempts and will not be falling for them.

    You guys need to figure out a way to spread your security wisdom to that great mass of computing humanity that remains utterly ignorant, and in some cases, completely uncaring as to the importance of staying secure online and not clicking links and opening attachments at every opportunity.

    Have you given some thought as to how you can achieve this?

Leave a Reply

Fill in your details below or click an icon to log in: Logo

You are commenting using your account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

About the author

Graham Cluley runs his own award-winning computer security blog at, and is a veteran of the anti-virus industry having worked for a number of security companies since the early 1990s. Now an independent security analyst, he regularly makes media appearances and gives computer security presentations. Follow him on Twitter at @gcluley