The MX Logic Threat Operations Center has observed a new type of malware in the wild being sent out as an email posing as a reconfiguration notification for Microsoft Outlook. 

The message subject is "Outlook Setup Notification" and contains the following text within the message body:

You have (1) message from Microsoft Outlook.

Please re-configure your Microsoft Outlook again.

Download attached setup file and install.

The attached file is named micr__outlook_update_6556.zip and has and md5 checksum of 7aa706c521dd8a11ef23b35fc5c4d543.

So far we are not seeing any variants to neither the attachment name (which could easily be made more random with the digits on the end) nor the hash so the malware is not morphing at this point.  That could easily change as it is trivial for AV vendors and spam filters to block this particular threat. 

The graph below shows hourly volumes of this new threat since about 11:30am MST on 6/2, when we originally started to observe it hitting our systems.