Email attachment scam

You get an email from someone who you might know and it has a document attached to it that needs opening. It looks genuine but it’s may not be. Here the attachments are listed and include a doc file.

attachments

Inside the doc file there is a computer macro (a program) which is hidden. It looks something like this (this is computer code that will run on your computer if you let it and do all sorts of harm) :-


Public Sub ErrorHandler(lError As Long, sObjectName As String, sFunctionName As String)
On Error GoTo ERROR_HANDLER:
Dim sPath As String

HadError = True
'AddChat vbRed, StringFormat("Error #{0}: {1} in {2}.{3}()", lError, Error(lError), sObjectName, sFunctionName)

sPath = ReplaceEnvironmentVars("%APPDATA%\StealthBot\LauncherErrors.txt")
If (LenB(Dir$(sPath)) = 0) Then
Open sPath For Output As #1: Close #1
End If

Open sPath For Append As #1
Print #1, StringFormat("Error #{0}: {1} in {2}.{3}()", lError, Error(lError), sObjectName, sFunctionName)
Close #1

Err.Clear
sErrorFile = ReplaceEnvironmentVars("%APPDATA%\StealthBot\LauncherErrors.txt")


These need treating carefully. If you think it may not be genuine (or even if it is) then don’t open the attachment, save it into a temporary directory and then scan it with your anti-virus software first.

And never think that something is genuine even if it purports to come from someone you know. The only way to verify that the email came from someone you trust is if it is digitally signed.

In Outlook you will see this in the list of messages. Look for this symbol -

Capturex1

When you open the message it will also be here -

Capturex2

Clicking on it reveals this -

Capturex3

Clicking on details reveals more -

Capturex4

And clicking on the signer reveals this -

Capturex5

If it is fake then it will tell you.

A signed email is virtually impossible to falsify.
Our details