skip to Main Content

Cybercrime, Second day for the new courier-themed AgentTesla campaign

Second day for the new courier-themed AgentTesla campaign. The text is identical to that of the previous day. Only the attachment, which however contains an exe file – the malware – changes

Second consecutive day for the new AgentTesla courier-themed campaign.

The text of the email remains unchanged, as does the time of sending the message (about 11:40 AM Italian time). Instead, the name of the compressed attachment and its extension change, from gz to zip. Inside, however, is an exe file: the malware. AgentTesla, through the keylogger function, is able to acquire everything the user types. Also, it can steal emails and browser credentials and take screenshots. Finally, it has the ability to remotely issue commands to the infected PC, such as downloading additional payloads or updating existing ones.

Back To Top