Gone fishing… Sorry: phishing – FDIC.gov

Another phishing email. This time from FDIC, which is basically an agency independent from the Federal Government that acts as an insurer to the nation’s financial institutions. The message was coming from the following email address : Investigation@FDIC.gov. The address is a forged one, most likely with PHP as the message header also contained PHP signature. The phisher wasn’t too smart as the sender’s IP address was clearly unchanged.
The text was the following:

Dear bank account owner,
Funds wired into your account are stolen from innocent account holders through Identity Theft. Please check your account statement (the statement is attached to this letter) and contact your bank account manager. Federal Deposit Insurance Corporation

The attachment mentioned in the email body is a windows executable called statement.exe and is a badware which has only one function: to send all the saved private data to a Nigerian server.

Please do not open ANY attachment if you don’t trust the sender. If in doubt, either delete it or go to the sender’s domain and try to find details about the attachment. If you decide to delete, don’t worry, if the attachment was legit and important, you can always ask the sender to send the message again.

If you got this or similar mail, I’d be interested in how did you recognize it’s phishing, or what happened when you installed the badware or clicked the link if there was one.
Sharing your experience can help others, too, so please share your thoughts.