Camera Radar “Negligent Driving” Malware Email

Outline:
“Negligent driving” email that includes an image apparently taken from a traffic camera claims that you have been issued with a driver violation and should click a link to read a notification.



Analysis:
The email is not a legitimate traffic violation notice.

Clicking the link downloads a .zip file that harbours a malicious JavaScript (.js) file. If you open this .js file, the JavaScript can download and install malware on your computer.

The image used in the malware email is taken from a 2011 report published on automative.com.

In recent years, fake traffic infringement emails have been used repeatedly to distribute malware.




Example:
Reason: negligent driving
Camera radar.Hello
You’ve been issued with a driver violation: The fee shall be accredited within the statutory period of up to 25.02.2017. This is an automated message, please do not reply.Case No: 05776
Date of infringement: 18/02/2017
Amount due: 22.25 CADPlease read notification [Link removed]Negligent Driving Malware




Last updated: February 21, 2017
First published: February 21, 2017
By Brett M. Christensen
About Hoax-Slayer

References
2017-02-20 – MALSPAM – SUBJECT: RADAR PHOTO PROOF 57628324
“Negligent Driving” Infringement Notice Malware Email
‘Invoice For Penalty Charge Notice’ Malware Email
Speed Camera Recording 32 Cars at Once to Hit U.S. by 2012