The spam will have a subject of:
Microsoft Security Bulletin MS07-0065 - Critical Update
The body claims to have a patch for a zero day vulnerability, but contains malware.
For more detail, please see this SANS alert:
A real, legitimate Microsoft Security Bulletin will be a PGP Signed text message.