An email with the subject of coming from Purchase <ACPM@REAGAN.COM> with a link in the email body that uses a chain to eventually download what looks like some sort of keylogger Update: I am assured this is Agent Tesla Keylogger. I always find it extremely hard to tell the difference between Agent Tesla & Hawkeye from basic sandbox analysis They use email addresses and subjects that will entice a user to read the email and open the attachment. A very high proportion are being targeted at small and medium size businesses, with the hope of getting a better response than they do … Continue reading →
The post Fake Quote PO ACPM@REAGAN.COM delivers a keylogger appeared first on My Online Security.