Technical analysis by the Malware Hunter JAMESWT

Agent Tesla campaign via fake DHL receipt. The email compressed attachment contains an exe: the malware itself. The data is exfiltrated via smtp

New global Agent Tesla campaign via fake DHL receipt.

The email compressed attachment contains an exe file: the malware itself. This, if open, activates the chain of infection. Once inside the computer, it steals information and exfilters it via smtp.

Agent Tesla, in fact, through the keylogger function, is able to acquire everything the user types. Furthermore, it can steal browser emails and credentials and take screenshots.