This evening, I decided to check my spam traps. I was initially looking for more Dridex but I came across this (new) campaign which was sat in my inbox as opposed to my junk email. I have received 2 emails in the past 1hr 30m. Both sites are WordPress sites. One appears to be a legit site with a nice homepage, the other has no homepage but I assume it was still initially setup for legitimate purposes.
Body of the email
There doesn't really seem to be any trend with these a part from the fact that both sites are WordPress. But then most malicious campaigns usually start by compromising WordPress sites to give them a platform to spam from anonymously.
Email email@example.com if you receive anything from this spam campaign.