Collaborate Disseminate
I had a bit of a problem trying to analyse this malware today. The word doc looks pretty average at first glance, but trying to run it in Anyrun on a W7 32 or 64 bit version of windows. gave me VBA errors. It also wouldn’t run on 64 bit version… Continue reading Fake order delivering AveMaria stealer with difficult office doc.
Blowing bubbles is a pastime enjoyed by young and old alike. The pleasant motion and swirling colors of the bubbles can be remarkably relaxing. With the right tools and techniques, it’s possible to take striking photos of these soap film phenomena, and that’s exactly what [Eric] and [Travis] did.
After …read more
Blowing bubbles is a pastime enjoyed by young and old alike. The pleasant motion and swirling colors of the bubbles can be remarkably relaxing. With the right tools and techniques, it’s possible to take striking photos of these soap film phenomena, and that’s exactly what [Eric] and [Travis] did.
After …read more
Yet another Gandcrab ransomware campaign. This time spoofing DHL Express with a fake delivery notification email. This delivers Gandcrab 5.2 ransomware that currently does not have free decryption available yet. This bad actor is getting a bit lazy an… Continue reading Fake DHL Urgent Delivery notice delivers Gandcrab 5.2 ransomware
A somewhat interesting and slightly alarming malware campaign, spreading worldwide but supposed to be targeting the USA that pretends to be an urgent message from the CDC ( Centre for Disease Control ) warning about a flu outbreak. This delivers Gandc… Continue reading Fake CDC Flu Pandemic Warning delivers Gandcrab 5.2 ransomware
There are still using this new version of the Trickbot delivery system where Bitsadmin is used to download the payload in small sections to a victims computer where it is all joined together to make 1 file. This example is today’s latest spoof or imita… Continue reading Fake Paychex Tax verification documents delivers Trickbot
Continuing with the recent changes to the Trickbot delivery system and possibly the payloads and configs today. This example is today’s latest spoof or imitation of a well-known company, bank or public authority delivering Trickbot banking Trojan. The … Continue reading Fake Dun & Bradstreet Company Complaint delivers Trickbot
There are lots of changes to the Trickbot delivery system and possibly the payloads and configs today. This example is today’s latest spoof or imitation of a well-known company, bank or public authority delivering Trickbot banking Trojan. The email wit… Continue reading Fake ADP Tax Billing Records delivers Trickbot
This example is today’s latest spoof or imitation of a well-known company, bank or public authority delivering Trickbot banking Trojan. The email with the subject of “Payment Receipt Advise/Avis de Reception de paiement” pretends to come fr… Continue reading Fake Royal Bank of Canada Payment Receipt Advise/Avis de Reception de paiement delivers Trickbot
This example is today’s latest spoof or imitation of a well-known company, bank or public authority delivering Trickbot banking Trojan. The email with the subject of “TD Bank Secure Mail ” pretends to come from TD Bank, but actually comes f… Continue reading Fake TD Bank Secure Mail delivers Trickbot