This is a phishing attempt first reported to CSULB ITS on January 27, 2015.
From: Bank of America 
Sent: Monday, January 26, 2015 6:15 PM
Subject: Unauthorized activity on your online account
Email informs recipient that their Bank of America account experienced several failed login attempts. It instructs the recipient to open an attachment to begin the process of verifying their account.
Intent of the Email
The sender is attempting to obtain Bank of America account credentials for their own malicious purposes. By using a file attachment, the phisher may also be attempting to load malware or spyware on recipient's computer.
Figure 1: Screenshot of the phishing email