Source |
TrendLabs Security |
Identifiant |
1426752 |
Date de publication |
2019-10-25 14:02:47 (vue: 2019-10-25 21:00:04) |
Titre |
AutoIT-compiled Negasteal/Agent Tesla, Ave Maria Delivered via Malspam |
Texte |
By Miguel Carlo Ang and Earle Maui Earnshaw We recently saw a malicious spam campaign that has AutoIT-compiled payloads – the trojan spy Negasteal or Agent Tesla (detected by Trend Micro as TrojanSpy.Win32.NEGASTEAL.DOCGC), and remote access trojan (RAT) Ave Maria or Warzone (TrojanSpy.Win32.AVEMARIA.T) – in our honeypots. The upgrading of payloads from a typical trojan...
|
Envoyé |
Oui |
Condensat |
access agent ang appeared autoit ave avemaria campaign carlo compiled delivered detected docgc earle earnshaw first from has honeypots malicious malspam maria maui micro miguel negasteal negasteal/agent payloads post rat recently remote saw spam spy tesla trend trojan trojanspy typical upgrading warzone win32 the |
Tags |
Spam
|
Stories |
|
Notes |
|
Move |
|