A new spam campaign is underway that is targeting Chinese recipients to trick them into installing the REvil (Sodinokibi) Ransomware. This spam campaign was discovered by security researcher onion and pretends to be an email from DHL stating that the delivery of a package has been delayed due to an incorrect customs declaration. It then proceeds to inform the recipient that they must download the enclosed “Customs documents”, fill them out correctly, and send it back in order for the package to be properly delivered.
Source: Bleeping Computer