Recently, I've been receiving a number of obvious spams with a ZIP file attached, the zip file name being
file(1) program told me everything I needed to know: it's a Windows executable. Now, the .COM extension denotes an ancient MS-DOS executable file format, which, IIRC, is restricted to 64KB of code and data, etc. (The file in question is 28KB or so, UPX compressed [whatever that is].)
But that's a beautiful attempt at social engineering: most people probably don't remember .com being an executable file format, and what harm could a file named with your email address do? Not having Windows handy, I couldn't easily find out, nor would I want to in any case....
Bottom line an attachement from someone you don't know, even if the attachment has a name of your email address, should NOT be opened.
Technorati tags: spam