Microsoft researchers say attackers are using contact us forms on websites to send emails with trumped-up legal threats. The messages consistently mention a copyright infringement by a photographer, illustrator or designer, and they contain a link to purported evidence for these infractions. But the link in actuality leads to a Google page that downloads IcedID, an information-stealer and loader for other malware. The use of contact forms allows the campaign to get around email spam filters and adds a layer of verisimilitude.
Source: https://threatpost.com/icedid-web-forms-google-urls/165347/