Cybercriminals have launched a widespread malicious spam attack aimed at tricking users into opening a malicious file. The emails, which have the subject line Contact of Settlements, pretend to relate to a contract. Recipients are told that if they agree to the terms of the contract they should expect payment on Friday for the first consignment Attached to the emails is a password-protected ZIP file, contract_1.zip, which contains a malicious Trojan horse. Sophos is intercepting the emails.”]
Source: https://grahamcluley.com/hackers-launch-contract-settlements-attack-inboxes/