Virus Alert – Clare Harding – email@example.com – Carters Packaging Ltd
You may have been receiving a huge amount of email spam this morning from Clare Harding at Carters Packaging Ltd with an invoice attachment called Purchase Order 0000035394.doc
You should fully virus scan your machines using whichever anti-virus you have. In some cases, you may have to rebuild computers as this seems to run as a process.
Rumoured download locations are:
It also looks like it stores its executable file in the %temp% directory with a filename of httsser.exe
It could be generating traffic to this IP below so worth blocking that on your systems too: