I published the following diary on isc.sans.org: “Getting some intelligence from malspam“. Many of us are receiving a lot of malspam every day. By “malspam”, I mean spam messages that contain a malicious document. This is one of the classic infection vectors today and aggressive campaigns are started every week.
[The post [SANS ISC] Getting some intelligence from malspam has been first published on /dev/random]

https://blog.rootshell.be/2017/09/18/sans-isc-getting-intelligence-malspam/