The publications are suspended, except for particular events, from 1 to 21 August. In the meantime, we are preparing some news for the second half of the year.
Cybercrime, new order-themed malware campaign via Guloader
Malware Hunter JAMESWT Technical Analysis
New order-themed malware campaign via Guloader. The gz attachment of the email contains an exe file: the loader, which should contact a link and download an unknown final payload
Another new malware campaign via Guloader with an order theme.
The gz attachment of the email contains an exe file: the loader, which should contact a link and download the final payload. At the moment, however, this is unknown. Guloader has been used by cybercrime to carry different types of information stealers such as AgentTesla / Origin Logger, FormBook, NanoCore RAT, Netwire RAT, Remcos RAT, Ave Maria / Warzone RAT and Parallax RAT.