The Information Security Office recently became aware of the reemergence of a malware distribution network previously taken down by law enforcement. This phishing email may look like a reply from a previous familiar email chain.
This malicious phishing email uses three types of email attachments to install malware.
These attachments include:
- Microsoft Excel spreadsheets
- Microsoft Word documents
- Password-protected zip archives (password: BMIIVYHZ) containing a Word document
If you receive an email like this, do not enable content without verifying the sender and/or asking them to resend the attachment as a PDF.
![Emotet Macro Image](https://informationsecurity.wustl.edu/files/2021/11/Emotet-Scam-Image.jpg)
If you have any concerns about a possible phishing email, please, use the Phish Alert Button (Report Phish) in your Outlook Ribbon.
![WIn 10 PAB (Report Phish)](https://informationsecurity.wustl.edu/files/2021/08/Screen-Shot-2021-08-20-at-12.34.09-PM.png)
For more information about the Phish Alert Button, please visit the following link:
Phish Alert Button: How to Report Phishing on Campus | Office of Information Security | Washington University in St. Louis