Debunking hoaxes and exposing scams since 2003!

Hoax-Slayer Logo

MALWARE - Paymer 'Thank You for Your Deposit' Email


Message purporting to be from digital payment service Paymer thanks recipients for their deposit and claims that they can view the payment ticket in an attached file.

Brief Analysis

The message is not from Paymer. The attached file contains malware that can harvest private information from the infected computer and relay it to criminals.


Subject: Thank you for your deposit N s114576

Good evening!

Thanks for depositing $ 124.44 to your account on our service.
Attached is your ticket. Make sure to keep it for your records.

Cordially yours,
The Paymer team

To unsubscribe - please check your notifications settings.

Detailed Analysis

This email, which claims to be from digital payment service Paymer, thanks recipients for depositing a specified amount of money. It claims that recipients can open an attached file to view a ticket with details about the supposed deposit.

However, the message is not from Paymer and the attached file does not contain a deposit ticket as claimed. Instead, the attached .zip file harbours malware that, once installed, can steal sensitive information from the infected computer and send it to remote servers operated by criminals.

The criminals responsible for the malware campaign hope that at least a few recipients, panicked into believing that fraudulent deposits have been made in their names, will open the attached file and install the malware.

The amount of the supposed deposit, the deposit number in the subject line, and other details vary in different incarnations of the malware emails.

If you receive one of these emails, do not open any attachments or click any links that it contains.

Last updated: May 5, 2014
First published: May 5, 2014
Written by Brett M. Christensen
About Hoax-Slayer

Thank you for your deposit ... - Virus