The emails resemble the ones supposedly sent by delivery services, as it tries to trick the recipients into downloading and opening the file in the attachment:
The email does have a veneer of legitimacy as the criminals used the Royal Mail logo and spoofed the "From" email address to seem like the message is coming from the organization.
The file in the attachment is a ZIP file and supposedly a shipping advisory, and inside it is an executable named royal_mail_shipping.exe. But the harmless name hides the file's sinister nature, and careless users will be served with a Trojan that opens a backdoor into their computer and the way for additional infections.
By subscribing to our early morning news update, you will receive a daily digest of the latest security news published on Help Net Security.
With over 500 issues so far, reading our newsletter every Monday morning will keep you up-to-date with security risks out there.