Beauty product-themed malspam campaign now carries Vjw0rm. The new template email .js attachment is directly the malware. Until now, it was spreading AgentTesla via rar file

Beauty product-themed campaign changes malware: from AgentTesla to Vjw0rm.

The email .js attachment, that has a new template, is directly the malicious payload.

Vjw0rm (aka Vengeance Justice Worm) is a modular worm/RAT hybrid that has three primary capabilities: Information Stealing, Denial of service (DOS), and Self Propagation. In the latter case it copies itself throughout the operating system and startup folder and can spread via removable devices such as USB ones.