Keyword: trojhybrisp33
10237 Total Search   |   Showing Results : 1681 - 1700
  Previous   Next  
Nemty Ransomware Spreads Through Love Letter Email in Spam Campaign
A spam campaign called the Love Letter has been discovered by security researchers. It is used in the delivery and distribution of the Nemty ransomware while disguising itself to appear like it is a
Sneaky Spam Technique Planting Phishing Links In Your Calendar
An observable spike of spam samples attempting to phish Wells Fargo users in June 2020. This spam campaign unusually uses .ICS files as attachments. These samples lure the recipient into opening the
Sextortion Bitcoin Scam Targets Educational Institution in Philippines
A new wave of bitcoin extortion spam is making its way to educational institutions. Written in Filipino, it contains a threatening message depicting how the scammer was able to hack the victim's
Spammers Use Covid-19 To Spread Lemon Duck Cryptominer
While the pandemic continues to affect millions of lives, spammers have continued to use COVID-19 as subject to lure recipients. In a campaign we have observed from March to June 2020, spammers aimed
Password-Protected Zipped File Spammed to Deliver POWLOAD and EMOTET
Since the start of April, we have observed numerous spam emails written in different languages. These spam messages claim that the user's invoice is attached in the mail. The attachment is a
GandCrab Ransomware Gets Distributed via Fake Shipping Notification Written in Korean
We recently observed a spam email making the rounds with the subject 'SHIPPED ORDER INCORRECT.' The spammed message purports to be a shipping order notification from a known courier delivery service
Russian Spam Delivers SHADE Ransomware via Link Embedded in PDF
We have observed a recent spike in spam in Russian language. The spammed message delivers a SHADE ransomware variant via embedded link in the attached .PDF. Upon investigation, this campaign used
Cryptocurrency-related Spam Mails Currently On The Rise
Cryptocurrency is the hot new topic nowadays, so it's no surprise that cybercriminals will start to use it as a way to get users to click on their malicious spam mail. For the past few days, we have
http://{blocked}et.cn/zeka/cfg 9sksl.jpg
<div style="border-top-width: 0px; border-right-width: 0px; border-bottom-width: 0px; border-left-width: 0px; border-style: initial; border-color: initial; margin-top: 0px; margin-right: 0p
{blocked}zbilnyak.cn/ittit/it. exe
Related to TSPY_ZBOT.BSN
{blocked}ylanogullari.com/logo f.gif
This is the site where PE_SALITY.RL downloads other malicious files.
http://{blocked}lport.com/admi nng.bin
TSPY_ZBOT.CDM connects to this URL to download its configuration file.
http://{blocked}ebox.com
TROJ_TRACUR.SMDI accesses this URL to download updates or other possibly malicious files.
http://{blocked}m.net/~usa/us/ shluz.php
TSPY_ZBOT.ZBJ sends the stolen information to this URL.
http://{blocked}33image884.com /eu5.bin
TSPY_ZBOT.ZBI accesses this URL to download its configuration file.
http://{blocked}89image33.com/ eu5.bin
TSPY_ZBOT.ZBI accesses this URL to download its configuration file.
http://{blocked}8.ru/www/http/ www.php
TSPY_ZBOT.KXC sends the gathered information via HTTP POST to this URL.
{blocked}ldbauverein.de/gbook/ ldr3no.exe
TSPY_ZBOT.BRG arrives as a file downloaded from this URL.
{blocked}aa.net/twitter/dfb33f c8ea7f1321fbd913eee77217c9.php?site=12&name=568367...
HTML_REDIR.FH redirects browsers to this site.
http://{blocked}monusimage.com /eu5.bin
TSPY_ZBOT.ABE may be downloaded from this URL.