November 20, 2023
Severity Medium Analysis Summary Agent Tesla is a very popular spyware Trojan built for the.NET framework. Since its initial appearance in 2014, this has been deployed […]
Rewterz Threat Alert – Pots Ransomware Campaign – IoCs
March 12, 2019Rewterz Threat Advisory – CVE-2019-0277 SAP HANA Extended Application Services
March 13, 2019Rewterz Threat Alert – Pots Ransomware Campaign – IoCs
March 12, 2019Rewterz Threat Advisory – CVE-2019-0277 SAP HANA Extended Application Services
March 13, 2019
Severity
Medium
Analysis Summary
Two separate Malspam campaigns have been detected.
One of the campaigns is a Paychex Themed Malspam dropping the Trickbot malware.
The other one is a Swift themed malicious Loki-ISO Malspam campaign.
Email subjects have been retrieved and given below.
Impact
Trickbot
Loki-ISO
Indicators of Compromise
| Email Subject | Payment Swift Copy FYR RE: Tax verification documents |
Remediation
Scan for the given email subjects. If found, block the sender’s IP, Email Address etc.