A mail appearing to be a PDF document and a ZIP archive with a Windows Shortcut file attached. The file statement.pdf isnt a PDF file but an executable, while the ZIP archive includes a collection of. lnk files and a copy of the. executable statement.lnk file. When the victim clicks on the.lnk file in reality he runs the. command prompt which allows the execution of statement.pdf file, regardless its. extension, using the /c option.”]
Source: http://securityaffairs.co/wordpress/24635/cyber-crime/using-lnk-file-phishing.html