Cybercrime, AgentTesla via Guloader and purchase order
The Gz attachment of the email contains an exe: the loader, which contacts another url and downloads the final malware.
Cybercrime, new order-themed malware campaign via Guloader
The gz attachment of the email contains an exe file: the loader, which should contact a link and download an unknown final payload.
Cybercrime, new AgentTesla DHL-themed campaign via Guloader
The Gz attachment of a fake courier email contains an exe: the loader, which contacts another url and downloads the final malware.
Cybercrime, fake DHL invoice decoy for a malware via Guloader
The email gz attachment contains an exe: the loader, which contacts a url and downloads the final payload. This however is unknown.
Cybercrime, DHL-themed AgentTesla campaign via Guloader
The email gz attachment contains an exe: the loader, which contacts a url and downloads the final malware. The stolen data is exfiltrated via FTP.
Cybercrime, fake order from Poland conveys unknown malware via Guloader
The email rar attachment contains an exe: the loader, which contacts a url and downloads the final payload. This however is unknown.
Cybercrime, DHL-themed AgentTesla campaign via Guloader
The email gz attachment contains an exe file: the loader. This contacts a url and downloads the final malware. Stolen data is exfiltrated via ftp.
Cybercrime, unknown malware spread via Guloader by DHL themed campaign
The gz attachment in a fake email from the courier contains an exe: the loader, which contacts a url and downloads the malware. However, the final payload is unknown.
Cybercrime, fake Swift transaction conveys unknown malware via Guloader
The xlsx attachment contacts a url and downloads a loader, which contacts another and downloads the malware. However, the final payload is unknown.
Cybercrime, the Guloader campaign back to Italy via a false quotation
There are 2 emails with different attachments, zip and exe files inside. The malware, however, is the same. It is not known what it downloads next.