The message gz attachment contains an exe file: the malware itself. Stolen data is exfiltrated via FTP.
Last cybercrime scam campaign arrives from the U.S. Ambassador in Benin. The mail tricks the victims to provide personal sensitive data to receive a fraud compensation. Everything is false, the only goal is to steal information
Last cybercrime scam campaign arrives from a fake mail from the U.S. Ambassador in Benin, Patricia Mahoney.
The message informs the victim that the diplomatic mission “received a compensation fund worth $6.5M USD only from the Federal Government of Benin-Republic here as compensation to you for what you went through in the name of their country. Having been a scam victim here, the Government has mandated us to forward the compensation fund to you and also apologize to you for everything you have gone through in the hands of impostors all in the name of Benin. You are thereby instructed to e-mail back and state how you wish to receive your funds immediately.” So, the scammers ask users to provide all the personal sensitive data for receiving the stolen amount back. But its all false. Furthermore, the sender address is different from the official one. The only goal is to steal sensitive data to use them in fraudulent ways.