October 18, 2012Dancho Danchev By Dancho Danchev

Spamvertised ‘KLM E-ticket’ themed emails serve malware

KLM customers, beware!

Cybercriminals are currently spamvertising millions of legitimate-looking emails, in an attempt to trick current and prospective KLM customers into executing the malicious attachment found in the email.

More details:

Sample screenshot of the spamvertised ‘KLM E-ticket’ themed email:

Second screenshot of the spamvertised ‘KLM E-ticket’ themed email:

Detection rate for the malicious attachment: KLM-e-Ticket.pdf.exe – MD5: 9c51f89ec22913bfac3d44afb486376b – detected by 34 out of 43 antivirus scanners as Trojan-Ransom.Win32.PornoAsset.wqc; Gen:Heur.PIF.3

Webroot SecureAnywhere users are proactively protected from this threat.

You can find more about Dancho Danchev at his LinkedIn Profile. You can also follow him on  Twitter.

Share Button


  1. […] the recently launched malicious campaigns impersonating KLM and American Airlines, cybercriminals are once again busy impersonating yet another company, this […]

  2. […] for cybercriminals. On numerous occasions, we intercepted related campaigns attempting to trick customers into clicking on malicious links, which ultimately exposed them to the client-side exploits served […]