Severity
Medium
Analysis Summary
‘Beyond The Grave (BYTG) virus has surfaced in a phishing campaign that executes a malicious code initiated by a malicious URL. The campaign aims to alter data confidentiality in the targeted hedge funds and a post by the phisher says that BYTG will continue to attack banking and financial institutions.
Impact
Data breach
Indicators of Compromise
IP(s) / Hostname(s)
46.226.108[.]201
URLs
Email Address
kmorgan[@]aksia[.]co
bill.trust.88992[@]mail[.]com
Remediation
Block the threat indicators at their respective controls.