A fake FedEX shipment carries Remcos. The 7z attachment of the email, dated January 11, 2022, contains an exe: the malware itself. This, if opened, activates the infection chain

A fake FedEX shipment conveys the new Remcos global campaign.

The 7z attachment of the email, dated January 11, 2022, contains an exe: the malware itself. This, if open, activates the infection chain. Remcos is a cybercrime Remote Access Trojan (RAT), associated above all with courier-themed phishing campaigns and with a wide range of features: such as closely monitoring user activities, recording audio and video content, credentials, digital currency theft, download of additional payloads and exfiltration of confidential data avoiding detection and sandboxes.

Malware C2