Cybercrime, mysterious malware circulating via courier-themed phishing campaign
The ace attachment in the “TNT Express delivery Consignment Notification” email contains another ace file with an exe inside: the malicious payload.
Cybercrime, new email about an RFQ conveyed by Remcos via Modiloader
The compressed attachment contains an exe file: the loader, which contacts a url and downloads the final malware.
Cybercrime, fake RFQ from Canada carries an unknown malware
The “INQUIRY LIST_RFQ-6789034” email contains an exe file – the malicious payload. It is not clear what it is, but some features suggest a trojan.
Cybercrime, Remcos campaign via DBatLoader/Modiloader
The xz attachment contains an exe: the loader, which contacts a url and downloads the final malware.
Cybercrime, Remcos arrives from Turkey via false account statement
The email rar attachment contains an exe file: the malware.
Cybercrime, Remcos “YOUR INQUIRY” campaign from China
The message z attachment contains an exe file: the malware.
Cybercrime, RemcosRat is hiding in a draft contract
The r17 attachment of the email with the subject "O/N O/186/1902" contains an exe file: the malware.
Cybercrime, RemcosRat goes from industrial engines
The exe attachment of the email from a French spare parts company is the malware.
Cybercrime, Remcos campaign via DBatLoader
The rar attachment contains an exe: the loader, which contacts a url and downloads the final malware.
Cybercrime, Godfather targets Android users of popular financial services
Group-IB cybersecurity experts: The malware is the evolution of an old banking Trojan called Anubis and hit over 400 international targets until now.