Trojan.HTML.PHISH.QURAAOOIPR
August 19, 2022
ALIASES:
HTML/Phishing.Agent.BUJ trojan (NOD32)
PLATFORM:
Windows
OVERALL RISK RATING:
DAMAGE POTENTIAL:
DISTRIBUTION POTENTIAL:
REPORTED INFECTION:
INFORMATION EXPOSURE:
Threat Type: Trojan
Destructiveness: No
Encrypted: No
In the wild: Yes
OVERVIEW
This Trojan arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites.
TECHNICAL DETAILS
File Size: 12,095 bytes
File Type: HTML, HTM
Memory Resident: No
Initial Samples Received Date: 19 Aug 2022
Arrival Details
This Trojan arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites.
Other Details
This Trojan connects to the following possibly malicious URL:
- https://{BLOCKED}jofrans.com/wadax.php