Omniquad Warns:
J2 Global eFax hoax Email with
Malware – Win32/TrojanDownloader

News from Omniquad | August 22, 2012

Omniquad Security technicians are reporting a wave of malicious emails targeting users of J2 Global eFax services.

J2Global offers internet fax services, hosted email and online back us services. The company has more than 11 million customers world wide. Emails containing a Trojan are targeting their customers.

The email purporting to be from J2 Global eFax services is a notification alerting the users that a recently sent eFax did not go through because of the email address is not registered for this service and asking victims to open the attached file for full details.

Fake J2 Global eFax notification email - unsuccessful transmission

Fake J2 Global eFax notification email – unsuccessful transmission

The cyber-criminals behind the attack are hoping that the recipient will be tempted to open the attached ZIP.

Fake J2Global transmission receipt -  The attached Zip is an EXE file containing a Trojan

However, the attached ZIP file contains an .EXE file called “fax-transmission-report.exe” which we have detected as Win32/TrojanDownloader.

For more information and a technical analysis of Win32/TrojanDownloader, visit Tech Info.

Tips to protect yourself

  • Never respond to spam / suspicious email or emails from unknown senders,
  • Do not click on any link from the email,
  • Do not open /save / execute any file attached to the email,
  • Do not supply your personal / Bank account information to strangers, they are most likely scammers.

Omniquad customers using Mailwall Remote email filtering services are protected from scams and emails containing viruses, malware and Trojans such as the Win32/TrojanDownloader.

If you want to help warn others about this email hoax, please feel free to Tweet or share on Facebook.