Complete item: http://tools.cisco.com/security/center/viewAlert.x?alertId=18340
Description:
Cisco Security Intelligence Operations has detected significant activity related to spam e-mail messages that claim to contain a security update that is required for online banking.
The e-mail messages contain a link and request that users download the software so that the user can access online banking websites. If the software is executed, it attempts to install malicious software.E-mail messages that are related to this threat (RuleID2355) may contain the following files: Banrisul.scr
The .scr file has a file size of 727,312 bytes. The MD5 checksum, which is a unique identifier of the executable, is the following string: 0xE0FCDDBB89417E3590548EB8475F9F79