iTunes Gift Card HoaxI received an email from iTunes late last night claiming that I have received an iTunes Gift Certificate worth $50.00. The email instructed me to open an attached file to access a certificate code. Do not open this attachment!

I opened the attachment on my test machine to see what it was. My security tools identified the Trojan immediately.

The email is a hoax and it doesn’t contain any iTunes Gift Certificate. The criminals behind the email are trying to fool recipients into opening the attached file. Those who open the attachment will install a malicious Trojan that can give hackers access to their computers.

Example email:

Subject: Thank you for buying iTunes Gift Certificate!

Hello!

You have received an iTunes Gift Certificate in the amount of $50.00. You can find your certificate code in attachment below.

Then you need to open iTunes. Once you verify your account, $50.00 will be credited to your account, so you can start buying music, games, video right away.

iTunes Store.

If you open the attachment you will not find a certificate code. Unfortunately, many users will take the bait and open the attachment. Once the attachment is opened he or she will inadvertently launch a malicious application that can install a Trojan. Once installed, this Trojan can then modify the Windows registry, potentially give hackers access to the infected computer by connecting to a remote server, and download and install even more Malware components.

E-mail messages that are related to this threat may contain the following files:

iTunes_certificate_197.zip
iTunes_certificate_147.exe

This tactic is often used to lure victims in believing they won something or they’re receiving a free gift. Internet Criminals will use logos and other content from the legitimate site in hopes that their victims will fall for the bait.