Debunking email hoaxes and exposing Internet scams since 2003!


Hoax-Slayer Logo Hoax-Slayer Logo

DividerDivider
Home    About    New Articles    RSS Feed    Subscriptions    Contact
DividerDivider
Bookmark and Share









Fake 4th Of July eCards Point to Trojan

Summary:
Message claims to be a 4th July celebration eCard notification email from a colleague or friend (Full commentary below).



Status:
False - Links in the message lead to a trojan.

Example:(Received, July 2007)
Independence Day Celebration

Hi. Colleague has sent you an ecard.
See your card as often as you wish during the next 15 days.

SEEING YOUR CARD

If your email software creates links to Web pages, click on your card's direct www address below while you are connected to the Internet:

[Link to malware website removed]

Or copy and paste it into your browser's "Location" box (where Internet addresses go).

PRIVACY
[site url removed] honors your privacy. Our home page and Card Pick Up have links to our Privacy Policy.

TERMS OF USE
By accessing your card you agree we have no liability. If you don't know the person sending the card or don't wish to see the card, please disregard this Announcement.

We hope you enjoy your awesome card.

Wishing you the best,
Webmaster,
[site url removed]



Commentary:
Bogus 4th of July eCard notification emails are currently being distributed. The emails claim that a friend or colleague has sent the recipient an Independence Day greeting eCard and instructs him or her to follow a link to view the card. However, the links lead to a malicious website that can download a trojan to the users computer. Once installed, the trojan will attempt to download other malware components.

The scammers responsible are attempting to capitalize on Independence Day celebrations in the United States. Since many genuine Independence Day greeting cards may be sent at this time of year, recipients may be more inclined to click on links in such emails without due caution.

According to Sophos.com, the 4th of July scam emails are being sent from compromised computers all around the world. The malware emails have a series of 4th of July related subject lines, including the following:

Happy B-Day USA
Happy Birthday America
Happy Fourth of July
July 4th B-B-Q Party
July 4th Family Day
July 4th Fireworks Show
Your Nations Birthday
4th Of July Celebration
American Pride, On The 4th
America's 231st Birthday
Americas B-Day
America the Beautiful
Celebrate Your Independence
Celebrate Your Nation
4th Of July Celebration
American Pride, On The 4th
Fireworks on The 4th
Fourth of July Party
Independence Day At The Park
Independence Day Party
God Bless America
Happy 4th of July

There have been other recent malware attacks using fake eCards. Be very cautious of clicking on links in any eCard notification messages, especially if they have generic references such as "a colleague" or "a friend" and do not address you by name. In view of the current influx of bogus eCard attacks, it is very important to verify the authenticity of any eCard notification emails that you receive.

References:
Ecard storm brews up a less than happy Fourth of July
Postcard From a Family Member Malware Email

Last updated: 5th July 2007
First published: 5th July 2007

Write-up by Brett M. Christensen