js Receipt Attachment - Email Virus Ransomware Case

Type:

In this case, the receipt email comes with an attached zip file containing infected JS (Java Script) virus. Once opened, the victim's computer will be locked and the victim will be asked for ransom to retrieve his files.

When the attachment is clicked, it will download a zip file. After unzipping, there will be several .js files (pictured below).

Anti-virus vendors' scan results

Header/Received of the email

Sender address is based in Vietnam