This article has been indexed from SANS Internet Storm Center, InfoCON: green
It is not unusual for malspam authors to encrypt the malicious files that they attach to messages they send out. Whether they encrypt the malicious file itself (as in the case of a password-protected Office document) or embed it in an encrypted archive, encryption can sometimes help attackers to get their creations past e-mail security scans.
Read the original article: One way to fail at malspam – give recipients the wrong password for an encrypted attachment , (Wed, Jul 14th)