Collaborate Disseminate
We continue to see Java Adwind Trojans daily. Today’s example is yet another change to the delivery method from previous Malspam emails that have been using Moneyexpress.com or MoneyGram or other middle eastern money exchange bodies. This one is an … Continue reading →
Continue reading FedEx unable to deliver your parcel leads to Java Adwind
This one is somewhat different to the Locky downloader I posted about at the end of last week. An email with the subject of Undelivered Parcel With DHL pretending to come from Ida MIROIR <Ida.MIROIR@umons.ac.be> with a html attachment which when … Continue reading →
Continue reading even more DHL cannot deliver your parcel malspam delivers malware
The next in the never ending series of Locky downloaders is an email pretending to be a DHL cannot deliver message with the subject of Parcel details coming as usual from random companies, names and email addresses with a semi- random named … Continue reading →
Continue reading another DHL cannot deliver your parcel malspam delivers Locky
The next in the never ending series of Locky downloaders is an email with the subject of Package #DH4946376 [ random numbers ] pretending to come from DHL but actually coming as usual from random email addresses with a random … Continue reading →
Continue reading Package #DH4946376 pretending to be a DHL unable to deliver message delivers Locky
I received a handful of strange emails over the weekend. They appear at first glance to be a typical phishing attempt, but the link goes to what looks like a genuine tracking attempt for what appears to be a genuine … Continue reading →
Continue reading Tracking No: RR360001458GB Citi Link Couriers – Phishing scam / fraud / 419
I haven’t posted much this week about the continual Locky JavaScript downloaders because they quite frankly haven’t been worth bothering with. Yes, there have been quite a few of them, but they have been such generic emails with such vague subjects as … Continue reading →
Continue reading continuing with Locky delivered via Malspam
An email with the subject of Failed on delivery pretending to come from Royal Mail Team <info@footballplayers1.ga> with a zip attachments containing a malicious word doc is another one from the current bot runs which try to download various Trojans and password stealers especially banking Trojans … Continue reading →
Following on from THIS post is yet another email spoofing random companies with the subject of FW: Latest order delivery details pretending to come from random senders and email addresses with a zip attachment downloads the same malware in … Continue reading →
Continue reading FW: Latest order delivery details delivers malware via Windows PowerShell
Dridex / Locky are back to the usual delivery system with an email pretending to come from Jobin Jacob at HYTEX with the subject of URGENT – DELIVERY coming come from random senders with a zip attachment downloading Locky ransomware They use email … Continue reading →
Continue reading URGENT – DELIVERY Jobin Jacob HYTEX delivers Locky
An email with the subject of Your parcel #898322, Status: Arrived Otis Ryan [ random numbered] pretending to come from Otis Ryan <cobranza@moldecor.com> with a zip attachment is another one from the current bot runs which downloads some sort of malware They use … Continue reading → Continue reading Your parcel #898322, Status: Arrived Otis Ryan – JS malware