{"id":561,"date":"2018-09-12T15:23:30","date_gmt":"2018-09-12T13:23:30","guid":{"rendered":"http:\/\/btrnaidu.com\/?p=561"},"modified":"2018-09-12T15:48:53","modified_gmt":"2018-09-12T13:48:53","slug":"url-with-malware-in-pdf-attachment","status":"publish","type":"post","link":"https:\/\/btrnaidu.com\/index.php\/url-with-malware-in-pdf-attachment\/","title":{"rendered":"URL with Malware in pdf attachment"},"content":{"rendered":"

Today I received an email from “Barclays <ruman@antimbd.com><\/span>” having subject “Account Alert – You have a new bill from Bank of America Credit Card<\/span>“.<\/p>\n

<\/p>\n

My eyebrows immediately went up as I dont have any credit card from Barclays.\u00a0 The email address “ruman@antimbd.com<\/span>” looked suspicious.\u00a0 \u00a0The email has a pdf attachment and the message said,<\/p>\n

For details of a recent payment made to you, please see the attached payment remittance advice.<\/span><\/p>\n

Barclays_Payment_Remittance_Advice_95047145.pdf<\/span><\/p>\n

If you have any queries or questions, our contact details are printed on the remittance advice.<\/span><\/p>\n

At once I thought, should I open the pdf or not.\u00a0 Trusting adobe, I open the pdf.\u00a0 The pdf has another link with some similar text which said, I should click here to view the bill.\u00a0 Now I was very certain that its a malware attack.\u00a0 I decided to verify if the url contains any virus.<\/p>\n

A quick google took me to\u00a0VirusTotal<\/a> page.\u00a0 \u00a0 The website was really helpful and in no time I could know that the url had Malware<\/span>.\u00a0 I wonder all those who has Barclays cards and if they were compromised by clicking on the link :(.<\/p>\n

Learnings \/ warnings:<\/p>\n