Chase Merchant Statement
X-Apparently-To: x via 126.96.36.199; Thu, 15 Nov 2012 16:11:10 +0000
Received-SPF: fail (domain of chasepaymentech.com does not designate 188.8.131.52 as permitted sender)
Authentication-Results: mta1054.mail.ukl.yahoo.com from=chasepaymentech.com; domainkeys=neutral (no sig);
from=chasepaymentech.com; dkim=neutral (no sig)
Received: from 127.0.0.1 (184.108.40.206)
by mta1054.mail.ukl.yahoo.com with SMTP; Thu, 15 Nov 2012 16:11:10 +0000
Date: Thu, 15 Nov 2012 13:11:14 -0300
From: "Paymentech Statement" <firstname.lastname@example.org>
Subject: Merchant Statement
Content-Type: text/plain; charset=us-ascii
If you need assistance, please contact your Account Executive or call Merchant Services at the telephone number listed on your statement.
PLEASE DO NOT RESPOND BY USING REPLY. This email is sent from an unmonitored email address, and your response will not be received by Chase Paymentech.
Chase Paymentech will not be responsible for any liabilities that may result from or relate to any failure or delay caused by Chase Paymentech's or the Merchant's email service or otherwise. Chase Paymentech recommends that Merchants continue to monitor their statement information regularly.
Learn more about Chase Paymentech Solutions, LLC payment processing services at www.chasepaymentech.com.
THIS MESSAGE IS CONFIDENTIAL. This e-mail message and any attachments are proprietary and confidential information intended only for the use of the recipient(s) named above. If you are not the intended recipient, you may not print, distribute, or copy this message or any attachments. If you have received this communication in error, please notify the sender by return e-mail and delete this message and any attachments from your computer.
The e-mail in this example had a zip file attached to it. Inside the zip file there was an executable file, disguised as a PDF called Statement_ID_1189347596829364298346928356983264134823492331491396234726393614913416234986239
The scammers deliberately gave the file such a long file name, because it makes it hard for the user to spot the real file type on Windows. The file has a PDF icon, but the .exe will be hidden if the file is saved on the Desktop or viewed via Windows Explorer. This is a very simple way of hiding the file extension and experienced users will spot it easily, but novice users will easily mistake it for a PDF file.
Related Cyber Criminal Profiles:No related profiles found.
Similar Spam Examples:Banking Phishing Scam - Your Chase Credit Card Account
Chase Account Form Phishing Scam
Chase Banking Phishing Scam - ACTION REQUIED: Notice for your account
Banking Phishing Scam - Chase Alert(SM): Notice for your Account
Malware Spam - Chase Credit Card Report