Rewterz Threat Alert – Phishing Attack Uses Google Redirects to Evade Detection
September 26, 2019Rewterz Threat Alert – AgentTesla Total Oil Themed Campaign
September 26, 2019Rewterz Threat Alert – Phishing Attack Uses Google Redirects to Evade Detection
September 26, 2019Rewterz Threat Alert – AgentTesla Total Oil Themed Campaign
September 26, 2019Severity
Medium
Analysis Summary
Dridex is a well-known trojan which specializes in the theft of online banking credentials. First spotted in 2014, the malware’s developers appear to be very active and are constantly evolving the software’s capabilities and attack vectors.
Phishing emails were reported with attached malicious archives, which extracted a malicious document, and lead to suspected Dridex banking Trojan.
Impact
Credential theft
Indicators of Compromise
Malware Hash (MD5/SHA1/SH256)
e614a69d706913376ab2bb20a703dcf5
Remediation
- Block all threat indicators at your respective controls.
- Always be suspicious about emails sent by unknown senders.
- Never click on the link/ attachments sent by unknown senders.