Cybercrime, the global Guloader campaign continues
The email text changes, but the system is always the same. Xz attachment contains an exe, the malware itself, which should load other payloads. Today, however, it is unknown which.
Cybercrime, false quotation spreads Guloader again
The email Xz attachment contains an executable, the malware itself. This should load other payloads, but it is currently unknown what they are.
Cybercrime, fake DHL shipment carries Guloader campaign
The email Xz attachment contains an executable, the malware itself. This should load other payloads, but it is currently unknown what they are.
Cybercrime, Guloader is back via false purchase orders
The email GZ attachment contains a password-protected zip (not provided in the text), with an exe inside: the malware itself. It is not known what the next payload is.
Cybercrime, new Guloader campaign via RQF
The email attachment contains an exe file, the malware itself, which downloads other payloads. At the moment, however, it is not known what they are.
Cybercrime, new Guloader campaign via purchase orders
The exe in the email iso attachment contacts Google and downloads the malware, which is decrypted and starts the infection. Data is exfiltrated by email.
Italian company earned up to $ 500,000 helping cybercrime to deliver malware
Checkpoint cyber security experts analyzed GuLoader evolutions in DarkEyE Protector and CloudEyE, sold by “sonykuccio”’s firm: an old acquaintance of infosec community.