Follow
I think I was just spear-phished by an idiot. A typical "DHL consignment couldn't be delivered" spam sent to my ISP's abuse desk, but the attachment was named "DHL_RECEIPT.PDF.gz". Who gzip's anything on Windows? (Does Windows even *have* gzip support?) Anyway, save & check out:
A RAR file, notable for being a mainly-Windows format (Winrar, anyone?), named like a gzip file, notable for being a mainly-Unix/Linux format, containing a Windows executable. That's why I think I was spear-phished by an idiot. Anyway,
VirusTotal container scan: https://www.virustotal.com/gui/file/c4254ab5dfc0842bda533e7b1a157d47afad55b364d690373afb0acc7fffe9c8/detection
VirusTotal contents scan: https://www.virustotal.com/gui/file/c4b10672d7ba37c074f03c7d889706834d3c837d96d14cad096f233fd4172109/detection