I get a suspicious Facebook email that has a link to what's eventually an .exe download after a redirect. I check the .exe through virustotal and it's detected in 14/42 scanners. I then get another email with another suspicious url link, but to a different site. Same thing- redirect and .exe download. I check virustotal for that .exe and notice that again 14/52 scanners detect the malware. I then check the md5 hash and they are the same.