Author: Eleazar Valles   
 

HTML/Phishing.Agent.CVR trojan (NOD32)

 PLATFORM:

Windows

 OVER ALL RISK RATING:
 DAMAGE POTENTIAL::
 DISTRIBUTION POTENTIAL::
 REPORTED INFECTION:
 INFORMATION EXPOSURE:
Low
Medium
High
Critical

  • Threat Type:
    Trojan

  • Destructiveness:
    No

  • Encrypted:
     

  • In the wild::
    Yes

  OVERVIEW

It arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites.

  TECHNICAL DETAILS

File size: 755 bytes
File type: HTML, HTM
INITIAL SAMPLES RECEIVED DATE: 14 de октября de 2022

Detalles de entrada

It arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites.

Otros detalles

It connects to the following possibly malicious URL:

  • https://objectstorage.{BLOCKED}erabad-1.oraclecloud.com/n/axltyajcqlso/b/bucket-20221006-1827azma/o/azma.js