Skip to content
  • Active
  • Severity: High
  • Malware
  • Windows
  • Verified · May 2022

How to remove $100 Amazon Gift Card email virus

A step-by-step removal guide for affected devices. Follow the verified procedure below — most readers complete it in under 10 minutes.

Alice Woods · Likes to teach users about virus prevention

$100 Amazon Gift Card email virus spreads malware that can record your keystrokes

100 Amazon Gift Card email virus

“$100 Amazon Gift Card email virus” is an email spam campaign meant to distribute Dridex malware. The deceptive message tries to convince users that they have received a gift card from Amazon. However, Amazon has nothing to do with this fraudulent campaign and it is entirely fabricated by cybercriminals.

The link embedded in the email downloads a malicious file (SRC file or Microsoft Office document) and when it is launched, it initiates the infection of Dridex. The malicious program can extract information that relates to finances and banking.

It mainly uses keylogging[1] for this purpose, which means that it can record users' keystrokes, allowing threat actors to access typed information. The infection may result in other system infections, serious privacy issues, financial losses, and even identity theft.

NAME $100 Amazon Gift Card
TYPE Banking malware; spyware
SYMPTOMS An email message encourages users to claim an Amazon gift card
DISTRIBUTION Email; malspam; “cracked” software installations
DANGERS Interacting with the email may result in malware infections, monetary losses, identity theft
ELIMINATION Scan the system with professional security tools
FURTHER STEPS Use a repair tool FortectIntego to fix any remaining damage and optimize the machine

The malicious email campaign

Amazon fake email

The full message of the “$100 Amazon Gift Card” rogue email reads as follows:

Subject: Amazon.com sent you an Amazon Gift Card!

We are delighted to enclose a $100 Amazon gift card as our way of saying Thank You.

Ordered on November 25, 2020
Order #808-9862519-7825262
$100.00
Amazon Gift Card

View details
Don't have an Amazon account?
Sign up to redeem.
Once applied to your Amazon account, the entire amount will be added to your gift card balance. Your gift card balance can't be transferred to other accounts, used to buy other gift cards, or, except as required by law, redeemed for cash.
Your gift card balance will be applied automatically to eligible orders during the checkout process and when using 1-Click. If you don't want to use your gift card balance on your order, you can unselect it as a payment method in checkout.

Amazon.com Logo

Share via FacebookTweet itPost to InstagramPin it on Pintrest

This email message was sent from a notification only address that cannot accept incoming email. Please do not reply to this message.
Sold by ACI Gift Cards LLC., an Amazon company. View Terms and Conditions.

Threat actors often use social engineering techniques[2] in their fraudulent campaigns. In this particular one, the branding of Amazon was chosen. It is a very well-known company around the world. Crooks use the trust that such companies build with their customers and exploit it.

Spam mail is not only used to deliver malicious programs – but it's also used for phishing and other scams. Fraudsters often create messages that offer various prizes, gifts, discounts, and deals. Crooks can also use scare tactics and make requests, demands, and even threaten users.

The main goal of such campaigns is always to generate revenue from innocent users. That is why you should always be extra careful opening emails from unknown senders, and downloading attachments you were not expecting.

How to avoid malware infections?

In the “$100 Amazon Gift Card email virus” specifically, the “View details” button is used to redirect people to a malicious website, from which either a dangerous SRC file or Microsoft Office document is downloaded. Some other files that cybercriminals include in their emails are Microsoft Office and PDF documents, executables (.exe), JavaScript, and archives (ZIP, RAR).

Malicious documents that are opened with Microsoft Office 2010 or newer versions install malicious software only if users enable macros commands (enable editing/content). That is why it is best to disable them completely and enable them only when needed.

These Microsoft Office versions also provide a “Protected View” mode, which does not allow opened malicious documents to install malware automatically. Older versions do not include this feature and install malicious software without asking permission. So you may also think about getting a newer version if you do not have it.

Order_Gift_Card_411022863.doc

If you want to avoid virus infections through email, it is strongly suggested not to open suspicious emails, especially those with attachments or links embedded in them. Even if you receive an attachment from someone on your friend list, it is best to double-check with them through another communication platform.

You should also only use official web stores and developer websites whenever you want to install software. Pirated, or “cracked” software[3] is unsafe as the platforms distributing them are unregulated. Threat actors often include malicious programs in the installers.

Additionally, the operating system and all programs should be updated regularly to ensure device integrity and user safety. Cybercriminals also like to use software vulnerabilities to deliver malware, so it is extremely important to install the most recent security patches.[4]

Scan your system with anti-malware tools

If you opened the “$100 Amazon Gift Card” email, you should scan your system with professional security tools. They can scan the machine and detect suspicious processes running in the background. FortectIntego and SpyHunterCombo Cleaner can automatically eliminate intruders with all the related files and entries. If the Dridex malware is not letting you use antivirus in normal mode, access Safe Mode and perform a full system scan from there.

Windows 7 / Vista / XP

  1. Click Start > Shutdown > Restart > OK.
  2. When your computer becomes active, start pressing F8 button (if that does not work, try F2, F12, Del, etc. – it all depends on your motherboard model) multiple times until you see the Advanced Boot Options window.
  3. Select Safe Mode with Networking from the list.Windows XP/7

Windows 10 / Windows 8

  1. Right-click on Start button and select Settings.
  2. Scroll down to pick Update & Security.Update & Security
  3. On the left side of the window, pick Recovery.
  4. Now scroll down to find Advanced Startup section.
  5. Click Restart now.Recovery
  6. Select Troubleshoot.Choose an option
  7. Go to Advanced options.Advanced options
  8. Select Startup Settings.Startup settings
  9. Click Restart.
  10. Press 5 or click 5) Enable Safe Mode with Networking.Press F5 to enable Safe Mode with Networking

Once you reach Safe Mode, launch SpyHunterCombo Cleaner, MalwarebytesMalwarebytes, or another reputable antivirus, update it with the latest definitions, and perform a full system scan to eradicate malware and all its malicious components.

Repair the damaged operating system

Once a computer is infected with malware, its system is changed to operate differently. For example, an infection can alter the Windows registry database, damage vital bootup and other sections, delete or corrupt DLL files, etc. Once a system file is damaged by malware, antivirus software is not capable of doing anything about it, leaving it just the way it is. Consequently, users might experience performance, stability, and usability issues, to the point where a full Windows reinstallation is required.

Therefore, we highly recommend using a one-of-a-kind, patented technology of FortectIntego repair. Not only can it fix virus damage after the infection, but it is also capable of removing malware that has already broken into the system thanks to several engines used by the program. Besides, the application is also capable of fixing various Windows-related issues that are not caused by malware infections, for example, Blue Screen errors,[5] freezes, registry errors, damaged DLLs, etc.

  • Download the application by clicking on the link above
  • Click on the ReimageRepair.exe
    Reimage download
  • If User Account Control (UAC) shows up, select Yes
  • Press Install and wait till the program finishes the installation processReimage installation
  • The analysis of your machine will begin immediatelyReimage scan
  • Once complete, check the results – they will be listed in the Summary
  • You can now click on each of the issues and fix them manually
  • If you see many problems that you find difficult to fix, we recommend you purchase the license and fix them automatically.Reimage results

By employing FortectIntego, you would not have to worry about future computer issues, as most of them could be fixed quickly by performing a full system scan at any time. Most importantly, you could avoid the tedious process of Windows reinstallation in case things go very wrong due to one reason or another.

Be the first to comment

Spyware news
Privacy preferences

We use cookies to improve your experience and analyze traffic. Some cookies enable embedded content like videos and social posts. Choose what you allow — you can change this anytime.