The Linkedin phishing attack is again based on the same pattern and some of the details are discussed in this post. The phishing email layout is presented below:
Visiting the link resulted in following message.
The execution process is the same as discussed earlier in the phishing attacks. The deobfuscated script is shown below:
The HTML content of the phishing email is here: http://pastebin.com/tbyxaEXs.
The complete script is here: http://pastebin.com/kvnvMrma
The script patterns are the same except the the URL of the malicious domain varies. Just be proactive and be paranoid in interacting with these types of emails.