Q: When Is A ZIP file Not A ZIP file?

No sooner than I had covered the latest tricks being used by the spammers than they go and try out another new technique!

Well, not new as such but the combination is a new one that I've not seen used by them before.



As you can see from the screenshot above, the attachment claims to be a ZIP file, which when opened contains a TXT file, yes, that's right I said a TXT [plain ASCII] file. This is what is contained.



Yes, another 'Pump-n-Dump' spam/scam.

I wonder what they will try next? Any suggestions?

Oh, yes the answer to the question posed in the title of this entry is:

A: When it's a RAR.

Oh, and guess what? The spammers are now sending out real ZIP files with TXT, XLS and PDF files inside as well as the 'fake' ZIP files.