Websense Security Labs is reporting that a trojan email campaigned has surfaced that attempts to lure users into downloading and running malicious files.

All emails use URL’s that send users to an IP address that will attempt to exploit the users if there browsers are vulnerable. If the browser is not vulnerable the exploit code will not work, however the page will attempt the user to download a file called patch.exe by displaying a message “If your download does not start in approximately 15 seconds click here to download”.

The theme of the new email campaigns are based around a new patch that is available for users who may have been infected with a recent Worm.

Subject lines we have seen so far are:

* Virus Detected!
* Trojan Alert!
* Worm Alert!
* Worm Activity Detected!

As always, you should use caution before clicking on links in an email or downloading/opening attachments.

[Malicious Websites / Malicious Code: New fake patch malicious code run]

[tags]antivirus, antivirus software, anti virus, anti virus software[/tags]