Cybercrime, Dridex returns via couriers and invoices
The xlsm attachment, if open, contacts a random link from an internal list and downloads the dll that starts the malware infection.
Cybercrime, a hybrid Drixex-Smokeloader malware goes by fake invoices
Global malspam campaign with xlsm attachment. It contacts a link from an internal list and downloads a dll, which contains a trojan and backdoor-loader hybrid.
Cybercrime, Italy hit by a continous Ursif/Gozi offensive
Institutions leveraged in daily-based campaigns. Last one exploits INPS. An xls attachment, different for each message, contacts a single link and downloads a DLL that activates malware infection.
Cybercrime, Dridex strikes again with fake emails from real companies
New malspam campaign: the xlsm attachment, if opened, contacts a random link from an internal list and downloads the DLL that starts the malware infection.
Cybercrime, Dridex hides behind fake Amazon emails
The bait is a shipping receipt, attached as an .xlsm file. This, if opened, contacts a random link from an internal list and downloads a DLL, which starts malware infection.
Cybercrime, Dridex associated with false Intuit QuickBooks invoices is back
The email contains a link that downloads a .doc document. This, if opened, contacts a link that downloads a DLL that infects the PC with malware.
Cybercrime, Dridex attacks again with fake ADP mail
The bait is always an attached invoice, an .xlsm file. This, if opened, contacts a link chosen randomly from an internal list that downloads a DLL and infects the PC with malware.
Cybercrime, here it comes the Intuit themed Dridex campaign
The implant is the same as the DHL one. The attachment contacts a random link from a list within it to download a DLL and infect the PC with malware.
Cybercrime, Dridex conveyed with a fake DHL invoice
The emails contain an .xlsm attachment which, when opened, contacts a random link from an internal list. This downloads a DLL that infects the PC with malware.
Cybercrime, Dridex is back with courier-themed campaigns
New emails with .xlsm attachment, which simulate a DHL and UPS invoice. The attachment downloads a DLL that starts the malware infection chain.