件名：Scanned document from HP ePrint user

From：eprintcenter＠hp.com (を偽装)

To：無関係のFIRSTNAME＠Toドメイン

本文：

 

This email and attachment are sent on behalf of FIRSTNAME＠Toドメイン.

If you do not want to receive this email in future, you may contact FIRSTNAME＠Toドメイン directly or you may consult your email application for spam or junk email filtering options.

Regards,
HP Team

 

 添付ファイル：適当な英単語-数字.doc

filename-5.doc

https://www.virustotal.com/#/file/31ce389b4e2ae15144ee4488f41222fcb29b39909206987591e61fa5f6202d02/detection

new document-82.doc (これはクォーティングされていなくてnewで切れますが)

new document-86.doc(同一内容)

untitled-17.doc (同一内容)

https://www.virustotal.com/#/file/b96d0bd2754229e19ec58f1cf91cdfd432bb789f6382034221d4911ef1ffd910/detection

filename-73.doc

https://www.virustotal.com/#/file/81b264cfd5ef6de817d4f1b31e5c887f384ede6eefe7ca628fdcde880a159332/detection