FedEx Corporation Email scam (virus) - Free Guide

What is FedEx Corporation Email scam?

FedEx Corporation Email scam can infect users' machines with malicious programs

Malspam can lead to privacy issues and virus infections

FedEx Corporation Email is a fake message crafted by fraudsters to trick people into opening a malicious attachment. The letter is presented as a report from the FedEx Corporation about a mechanical equipment shipment. Of course, FedEx has nothing to do with this fraudulent campaign.

Instead of containing information about a shipment, the attachment launches an executable that could trigger malware^[1] installation. Such infections can result in privacy issues, monetary losses, identity theft, and even operating system damage.

The malicious program could act as a Trojan or a RAT (Remote Access Trojan) that gives threat actors access to the machine for an unlimited amount of time. Fraudsters can gain control over users' personal files, like photos, videos, and documents. The data can later be sold on underground forums or used for blackmail.

Ransomware can also be spread by email. This type of malware encrypts users' personal data in order to make ransom demands for the decryption tools. These programs can also engage in cryptojacking which is a process where a program secretly uses computer's resources to mine cryptocurrency.

Social engineering

Crooks use social engineering to make people perform a task they want

In order to convince people to open the infected email attachment, crooks use social engineering^[2] techniques. The full message in the fake FedEx Corporation email reads as follows:

FedEx Corporation Email scam

Subject: Re: CR-FEDEX_TN-270036844357_DT-_CD-20220301_CT-0833

FedEx Corporation

Dear Customer,

Attached is the report relating to the following mechanical equipment shipment entrusted to FedEx Express:

Thanks for the attention.

Kind regards,
FedEx Express.

To make it even more believable, crooks are using FedEx's branding and logo. Additionally, the message looks like a regular automatic email that does not cause any suspicion. There are no spelling or grammar mistakes, there is no urgency or rushing which is very common in other email scams, like Your Netflix Subscription Suspended Within 2 Days. It is not hard to see how some people would open the attachment not thinking about it.

What should you do after opening a malicious email?

The most important thing to do if you gave away your login details is to change your passwords as soon as possible. If you do it quickly, there may be a chance that cybercriminals will not have enough time to do any damage. If you think you entered your bank account information into an unsafe site – contact your bank and explain what happened. You may be able to cancel your card before fraudsters reach it.

If you think you opened a malicious email attachment, you should scan your machine with professional security tools because most likely – it got infected. In this guide, you will find instructions on how to act in case of malware infection and how to fix a damaged operating system.

Check your system for malware infections

If you suspect that you have opened an email with an infected attachment, you should take care of the threat. We recommend using SpyHunter 5Combo Cleaner or Malwarebytes security tools that will scan your machine, eliminate it, and prevent such infections in the future by giving you a warning before a malicious program can make any changes.

Crooks often disguise their malicious programs as “handy” tools so they would be more difficult to identify for the average user. People also often fail to eliminate all the related files and entries which could lead to the renewal of an infection. The program could have any name and icon, so this step is best performed by anti-malware tools.

However, if manual removal is what you prefer, we have instructions for Windows and Mac machines:

Windows 10/8:

1. Enter Control Panel into Windows search box and hit Enter or click on the search result.
2. Under Programs, select Uninstall a program.
3. From the list, find the entry of the suspicious program.
4. Right-click on the application and select Uninstall.
5. If User Account Control shows up, click Yes.
6. Wait till uninstallation process is complete and click OK.

Windows 7/XP:

1. Click on Windows Start > Control Panel located on the right pane (if you are Windows XP user, click on Add/Remove Programs).
2. In Control Panel, select Programs > Uninstall a program.
3. Pick the unwanted application by clicking on it once.
4. At the top, click Uninstall/Change.
5. In the confirmation prompt, pick Yes.
6. Click OK once the removal process is finished.

Mac:

1. From the menu bar, select Go > Applications.
2. In the Applications folder, look for all related entries.
3. Click on the app and drag it to Trash (or right-click and pick Move to Trash)

To fully remove an unwanted app, you need to access Application Support, LaunchAgents, and LaunchDaemons folders and delete relevant files:

1. Select Go > Go to Folder.
2. Enter /Library/Application Support and click Go or press Enter.
3. In the Application Support folder, look for any dubious entries and then delete them.
4. Now enter /Library/LaunchAgents and /Library/LaunchDaemons folders the same way and terminate all the related .plist files.

Repair the damaged operating system

Performance, stability, and usability issues, to the point where a complete Windows reinstall is required, are expected after malware infection. These types of infections can alter the Windows registry database, damage vital bootup and other sections, delete or corrupt DLL files, etc. Once a system file is damaged by malware, antivirus software is not able to repair it.

This is why FortectIntego was developed. It can fix a lot of the damage caused by an infection like this. Blue Screen errors,^[3] freezes, registry errors, damaged DLLs, etc., can make your computer completely unusable. By using this maintenance tool, you could avoid Windows reinstallation.

• Download the application by clicking on the link above
• Click on the ReimageRepair.exe
  
• If User Account Control (UAC) shows up, select Yes
• Press Install and wait till the program finishes the installation process
• The analysis of your machine will begin immediately
• Once complete, check the results – they will be listed in the Summary
• You can now click on each of the issues and fix them manually
• If you see many problems that you find difficult to fix, we recommend you purchase the license and fix them automatically.