Cybercrime, fake FedEX shipment carries Remcos The 7z attachment of the email, dated January 11, 2022, contains an exe: the malware… Cybercrime, fake FedEX shipment carries Remcos 12 January 2022 Francesco Bussoletti Defence and Security, Restricted Area The 7z attachment of the email, dated January 11, 2022, contains an exe: the malware itself. This, if opened, activates the infection chain.
Cybercrime, fake DHL booking carries a new Formbook campaign The email .xz attachment contains an exe file disguised as a pdf, the malware itself.… Cybercrime, fake DHL booking carries a new Formbook campaign 29 April 2021 Francesco Bussoletti Defence and Security, Restricted Area The email .xz attachment contains an exe file disguised as a pdf, the malware itself. This, if opened, activates the infection.
Cybercrime, new Dridex campaign via invoices and Cutwail botnet The email xlsm attachment contacts a random link from an internal list and downloads the… Cybercrime, new Dridex campaign via invoices and Cutwail botnet 24 March 2021 Francesco Bussoletti Defence and Security, Restricted Area The email xlsm attachment contacts a random link from an internal list and downloads the DLL, which starts the malware infection chain.
Cybercrime, the Dridex campaign via Freightquote is back The email xlsm attachment contacts a random link from an internal list and downloads the… Cybercrime, the Dridex campaign via Freightquote is back 15 March 2021 Francesco Bussoletti Defence and Security, Restricted Area The email xlsm attachment contacts a random link from an internal list and downloads the DLL, which starts the malware infection chain.
Cybercrime, false Freightquote invoice conveys Dridex The email xlsm attachment, if opened, contacts a random link from an internal list and… Cybercrime, false Freightquote invoice conveys Dridex 10 March 2021 Francesco Bussoletti Defence and Security, Restricted Area The email xlsm attachment, if opened, contacts a random link from an internal list and downloads the dll, which starts the malware infection.
Cybercrime, fake DHL shipment carries Guloader campaign The email Xz attachment contains an executable, the malware itself. This should load other payloads,… Cybercrime, fake DHL shipment carries Guloader campaign 22 February 2021 Francesco Bussoletti Defence and Security, Restricted Area The email Xz attachment contains an executable, the malware itself. This should load other payloads, but it is currently unknown what they are.
Cybercrime, Dridex conveyed by false MSC invoices The xlsm attachment contacts a random link from an internal list and downloads the malware,… Cybercrime, Dridex conveyed by false MSC invoices 18 February 2021 Francesco Bussoletti Defence and Security, Restricted Area The xlsm attachment contacts a random link from an internal list and downloads the malware, a Trojan protagonist of campaigns especially with a courier theme.
Cybercrime, the invoice-themed Dridex campaign is back The xlsm attachment, distributed by the Cutwail botnet, contacts a random link from internal list… Cybercrime, the invoice-themed Dridex campaign is back 10 February 2021 Francesco Bussoletti Defence and Security, Restricted Area The xlsm attachment, distributed by the Cutwail botnet, contacts a random link from internal list and downloads the malware.
Cybercrime, C.H. Robinson decoy of the courier-themed Dridex campaign The xlsm attachment, distributed by the Cutwail botnet, contacts a random link from an internal… Cybercrime, C.H. Robinson decoy of the courier-themed Dridex campaign 8 February 2021 Francesco Bussoletti Defence and Security, Restricted Area The xlsm attachment, distributed by the Cutwail botnet, contacts a random link from an internal list and downloads the malware.
Cybercrime, new courier-themed Dridex campaign The xlsm attachment, distributed by the Cutwail botnet, contacts a random link from an internal… Cybercrime, new courier-themed Dridex campaign 1 February 2021 Francesco Bussoletti Defence and Security, Restricted Area The xlsm attachment, distributed by the Cutwail botnet, contacts a random link from an internal list and downloads the malware.